284 matches found
CVE-2018-0841
Microsoft Office 2016 Click-to-Run allows a remote code execution vulnerability due to how objects are handled in memory, aka "Office Remote Code Execution Vulnerability"...
Remote code execution
Microsoft Office 2016 Click-to-Run allows a remote code execution vulnerability due to how objects are handled in memory, aka "Office Remote Code Execution Vulnerability"...
Information disclosure
Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run C2R allow an information disclosure vulnerability, due to how Office initializes the affected variable, aka "Microsoft Office Information Disclosure Vulnerability"...
CVE-2018-0841
Microsoft Office 2016 Click-to-Run allows a remote code execution vulnerability due to how objects are handled in memory, aka "Office Remote Code Execution Vulnerability"...
CVE-2018-0841
CVE-2018-0841 is a remote code execution vulnerability in Microsoft Office 2016 Click-to-Run (C2R) stemming from how Office objects are handled in memory. The NVD entry (and corroborating sources) describe it as a network-exploitable issue with high impact (C/H/I/A all High) and a CVSSv3 base sco...
CVE-2018-0850
CVE-2018-0850 affects Microsoft Outlook and Office components across Outlook 2007/2010/2013/2016 and Office 2016 Click-to-Run. The root cause is how the format of incoming messages is validated, enabling elevation of privileges when a victim processes a specially crafted email. Connected sources ...
Microsoft Office 2016 Click-to-Run Remote Code Execution Vulnerability
Microsoft Office 2016 Click-to-Run is an office software suite product developed by Microsoft Corporation USA. A remote code execution vulnerability exists in Microsoft Office 2016 Click-to-Run that stems from the program failing to properly handle objects in memory. A remote attacker can exploit...
Microsoft Office CVE-2018-0853 Information Disclosure Vulnerability
Description Microsoft Office is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office 2010 Service Pack 2 64-bi...
Microsoft Excel CVE-2018-0841 Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...
Microsoft Office CVE-2018-0795 Remote Code Execution Vulnerability
Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2018-0792 Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...
CVE-2017-11939
Microsoft Office 2016 Click-to-Run C2R allows an information disclosure vulnerability due to the way Microsoft Office enforces DRM copy/paste permissions, aka "Microsoft Office Information Disclosure Vulnerability"...
CVE-2017-11935
Microsoft Office 2016 Click-to-Run C2R allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability"...
CVE-2017-11939
Microsoft Office 2016 Click-to-Run C2R allows an information disclosure vulnerability due to the way Microsoft Office enforces DRM copy/paste permissions, aka "Microsoft Office Information Disclosure Vulnerability"...
CVE-2017-11935
Microsoft Office 2016 Click-to-Run C2R allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability"...
CVE-2017-11935
Microsoft Office 2016 Click-to-Run C2R allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability"...
Remote code execution
Microsoft Office 2016 Click-to-Run C2R allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability"...
CVE-2017-11939
CVE-2017-11939 affects Microsoft Office 2016 (Click-to-Run). The vulnerability is an information-disclosure flaw stemming from DRM copy/paste enforcement, potentially leaking a user’s private data (e.g., private key) from the certificate store or plaintext from DRM-protected emails/drafts. Affect...
CVE-2017-11935
Microsoft Office 2016 Click-to-Run C2R allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability"...
CVE-2017-11935
CVE-2017-11935 is a Microsoft Office remote code execution vulnerability affecting Microsoft Excel in Office 2016 Click-to-Run. The issue stems from how Excel/Office handles objects in memory, allowing an attacker to craft an Excel document that triggers the flaw and executes arbitrary code in th...