4 matches found
Privilege escalation
An elevation of privilege vulnerability exists when Office Web Apps Server 2013 and Office Online Server fail to properly handle web requests, aka "Microsoft Office Elevation of Privilege Vulnerability." This affects Microsoft Office, Microsoft Office Online Server. This CVE ID is unique from...
CVE-2018-8245
CVE-2018-8245 (Microsoft Publisher RCE) is a remote code execution flaw in Microsoft Publisher caused by failure to lock down the Local Machine zone when instantiating OLE objects. Affected product: Publisher (Publisher 2010 SP2 noted in related materials). The root cause is improper handling of ...
Microsoft Office CVE-2018-8245 Privilege Escalation Vulnerability
Description Microsoft Office is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Publisher 2010 Service Pack 2 32-bit editions Microsoft Publisher 2010 Service Pack 2 64-bit editions Recommendations Run...
Security Updates for Microsoft Publisher Products (June 2018)
The Microsoft Publisher Products are missing a security update. It is, therefore, affected by the following vulnerability : - An elevation of privilege vulnerability exists when Microsoft Publisher fails to utilize features that lock down the Local Machine zone when instantiating OLE objects. An...