Microsoft Word 资源管理错误漏洞

Microsoft Word is a word processing software within the Office suite developed by Microsoft Corporation. There is a resource management vulnerability in Microsoft Word. Attackers can exploit this vulnerability to execute code remotely. The following products and versions are affected: Microsoft...

Microsoft Word 安全漏洞

Microsoft Word is a word processing software within the Office suite developed by Microsoft Corporation. There are security vulnerabilities in Microsoft Word. Attackers can exploit these vulnerabilities to execute code remotely. The following products and versions are affected: Microsoft SharePoi...

Microsoft Word 安全漏洞

Microsoft Word is a word processing software within the Office suite developed by Microsoft Corporation. There are security vulnerabilities in Microsoft Word. Attackers can exploit these vulnerabilities to obtain sensitive information. The following products and versions are affected: Microsoft 3...

Microsoft Word 安全漏洞

Microsoft Word is a word processing software within the Office suite developed by Microsoft Corporation. There are security vulnerabilities in Microsoft Word. Attackers can exploit these vulnerabilities to obtain sensitive information. The following products and versions are affected: Microsoft...

Security Updates for Microsoft Word Products (May 2026)

The Microsoft Word Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - Access of resource using incompatible type 'type confusion' in Microsoft Office Word allows an unauthorized attacker to execute code locally. CVE-2026-40364 - Use after free in...

Microsoft Patch Tuesday for April 2026 - Snort Rule and Prominent Vulnerabilities

Microsoft has released its monthly security update for April 2026, which includes 165 vulnerabilities affecting a wide range of products, including eight Microsoft marked as "critical." CVE-2026-23666 is a critical Denial of Service DoS vulnerability that affects the .NET framework. Successful...

Security Updates for Microsoft Word Products C2R (August 2025)

The Microsoft Word Products are missing security updates. It is, therefore, affected by multiple remote code execution vulnerabilities that attackers can exploit to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for these issues but has instead...

Description of the security update for SharePoint Server 2019 Language Pack: August 12, 2025 (KB5002770)

Description of the security update for SharePoint Server 2019 Language Pack: August 12, 2025 KB5002770 Summary This security update resolves a Microsoft Word remote code execution vulnerability and Microsoft Word information disclosure vulnerability. To learn more about the vulnerabilities, see t...

Security Updates for Microsoft Word Products C2R (March 2025)

The Microsoft Word Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-24078, CVE-2025-24079 Note that...

Description of the security update for SharePoint Server Subscription Edition Language Pack: November 8, 2022 (KB5002291)

Description of the security update for SharePoint Server Subscription Edition Language Pack: November 8, 2022 KB5002291 Summary This security update resolves a Microsoft Word remote code execution vulnerability and Microsoft Word information disclosure vulnerability. To learn more about the...

Description of the security update for SharePoint Server 2019 Language Pack: November 8, 2022 (KB5002295)

Description of the security update for SharePoint Server 2019 Language Pack: November 8, 2022 KB5002295 Summary This security update resolves a Microsoft Word information disclosure vulnerability and Microsoft Word remote code execution vulnerability. To learn more about the vulnerabilities, see...

Vulnerabilities fixed in Microsoft Office

Microsoft has fixed vulnerabilities in Office products. The vulnerabilities allow a malicious person to carry out attacks execute attacks that lead to the following categories of damage: Accessing sensitive data. Execution of arbitrary code User Rights Denial-of-Service Below is a summary of the...

The vulnerability of Microsoft Word, Microsoft Office products, and Office 365 allows a perpetrator to execute arbitrary code.

The vulnerabilities of Microsoft Office packages, Office 365, and the Microsoft Word text editor are related to errors in memory object handling. Exploiting these vulnerabilities can allow a malicious actor to execute arbitrary code remotely, using a specially crafted web page or file...

CVE-2014-1761

Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Word Viewer; Office Compatibility Pack SP3; Office for Mac 2011; Word Automation Services on SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allow remote attacker...

MS02-031: Cumulative patches for Excel and Word for Windows (324458)

The versions of Microsoft Word and Excel installed on the remote host are missing a security update. They are, therefore, affected by multiple vulnerabilities : - A security bypass vulnerability exists in Excel due to improper handling of formatted inline macros that are attached to objects withi...