Lucene search
K

7 matches found

NVD
NVD
•added 2018/04/12 1:29 a.m.•18 views

CVE-2018-0950

An information disclosure vulnerability exists when Office renders Rich Text Format RTF email messages containing OLE objects when a message is opened or previewed, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Word, Microsoft Office. This CVE ID is unique fr...

6.5CVSS5AI score0.09024EPSS
Exploits0References3
Prion
Prion
•added 2018/04/12 1:29 a.m.•30 views

Information disclosure

An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-0950...

2.6CVSS5.4AI score0.09024EPSS
Exploits0References3Affected Software1
CVE
CVE
•added 2018/04/12 1:0 a.m.•101 views

CVE-2018-0950

CVE-2018-0950: Microsoft Office information disclosure via RTF email rendering. Affected: Office/Word on Windows. Root cause: memory contents disclosure when rendering RTF messages with OLE objects; error in how Office handles memory disclosure. Impact: potential leakage of memory contents to a r...

6.5CVSS5.4AI score0.09024EPSS
Exploits0References3Affected Software2
CVE
CVE
•added 2018/04/12 1:0 a.m.•74 views

CVE-2018-1007

CVE-2018-1007 refers to an information disclosure in Microsoft Office where memory contents are improperly disclosed when Office renders RTF/OLŠ• objects (affecting Office components such as Word/Office). The root cause, per connected advisories, is an error in how memory contents are disclosed, e...

5.3CVSS5.3AI score0.06562EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
•added 2018/04/11 12:0 a.m.•87 views

Microsoft Office Compatibility Pack Service Pack 3 Information Disclosure Vulnerability (KB4018354)

This host is missing an important security update according to Microsoft KB4018354 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

6.5CVSS6.1AI score0.09024EPSS
Exploits0References2
Microsoft KB
Microsoft KB
•added 2018/04/10 7:0 a.m.•65 views

End of support for Office 2013

End of support for Office 2013 Support for Office 2013 ended on April 11, 2023 and there will be no extension and no extended security updates. All of your Office 2013 apps will continue to function. However, you could expose yourself to serious and potentially harmful security risks.Buy or try...

6.5CVSS6.7AI score0.09024EPSS
Exploits0
CERT
CERT
•added 2018/04/10 12:0 a.m.•520 views

Microsoft Outlook retrieves remote OLE content without prompting

Overview When a Rich Text RTF email is previewed in Microsoft Outlook, remotely-hosted OLE content is retrieved without requiring any additional user interaction. This can leak private information including the user's password hash, which may be cracked by an attacker. Description Microsoft Outlo...

6.5CVSS6.7AI score0.09024EPSS
Exploits0References2
Rows per page
Query Builder