7 matches found
CVE-2018-0950
An information disclosure vulnerability exists when Office renders Rich Text Format RTF email messages containing OLE objects when a message is opened or previewed, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Word, Microsoft Office. This CVE ID is unique fr...
Information disclosure
An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-0950...
CVE-2018-0950
CVE-2018-0950: Microsoft Office information disclosure via RTF email rendering. Affected: Office/Word on Windows. Root cause: memory contents disclosure when rendering RTF messages with OLE objects; error in how Office handles memory disclosure. Impact: potential leakage of memory contents to a r...
CVE-2018-1007
CVE-2018-1007 refers to an information disclosure in Microsoft Office where memory contents are improperly disclosed when Office renders RTF/OLŠ objects (affecting Office components such as Word/Office). The root cause, per connected advisories, is an error in how memory contents are disclosed, e...
Microsoft Office Compatibility Pack Service Pack 3 Information Disclosure Vulnerability (KB4018354)
This host is missing an important security update according to Microsoft KB4018354 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
End of support for Office 2013
End of support for Office 2013 Support for Office 2013 ended on April 11, 2023 and there will be no extension and no extended security updates. All of your Office 2013 apps will continue to function. However, you could expose yourself to serious and potentially harmful security risks.Buy or try...
Microsoft Outlook retrieves remote OLE content without prompting
Overview When a Rich Text RTF email is previewed in Microsoft Outlook, remotely-hosted OLE content is retrieved without requiring any additional user interaction. This can leak private information including the user's password hash, which may be cracked by an attacker. Description Microsoft Outlo...