159 matches found
CVE-2018-8524
A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-852...
CVE-2018-8573
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft Word, Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8539...
CVE-2018-8522
A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-852...
CVE-2018-8524
CVE-2018-8524 is an Outlook remote code execution vulnerability affecting Office 365 ProPlus, Microsoft Office, and Microsoft Outlook. The weakness stems from improper handling of in-memory objects, enabling an attacker to execute arbitrary code via a specially crafted file or input, with the att...
CVE-2018-8575
CVE-2018-8575 is a remote code execution vulnerability in Microsoft Project family products (Microsoft Project, Office 365 ProPlus, Microsoft Project Server) arising when the program fails to properly handle objects in memory. The open-source and vulnerability feeds in the connected documents cor...
CVE-2018-8522
CVE-2018-8522 is a remote code execution in Microsoft Outlook where the vulnerability arises from improper handling of objects in memory, allowing an attacker to run code with the current user’s privileges when a specially crafted file is processed. CVE-2018-8582 is another Outlook RCE triggered ...
CVE-2018-8574
CVE-2018-8574 is a remote code execution flaw in Microsoft Excel/Office caused by how the program handles objects in memory. An attacker could exploit this by opening a specially crafted file, executing arbitrary code under the current user’s context (potentially with admin rights). Public-connec...
CVE-2018-8576
CVE-2018-8576 is a remote code execution vulnerability in Microsoft Outlook that occurs when Outlook fails to properly handle objects in memory. Affected products include Office 365 ProPlus, Microsoft Office, and Microsoft Outlook. The underlying issue is improper handling of in-memory objects, e...
CVE-2018-8558
CVE-2018-8558 is an information disclosure vulnerability in Microsoft Outlook related to not respecting the SharePoint Online Admin Center “Default link type” settings. Affected products include Office 365 ProPlus and Microsoft Office. Root cause, per available description, is improper handling o...
CVE-2018-8582
CVE-2018-8582 is a remote code execution flaw in Microsoft Outlook that arises when parsing specially crafted rule export files. The underlying issue is in Outlook’s handling of objects during parsing, allowing an attacker to execute arbitrary code on the affected system. A successful exploit cou...
CVE-2018-8573
CVE-2018-8573 is a remote code execution vulnerability in Microsoft Word/Office products caused by improper handling of objects in memory. The vulnerability could allow an attacker to execute arbitrary code in the security context of the current user when a specially crafted file is opened. Multi...
CVE-2018-8577
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Office, Office 365 ProPlus, Microsoft Excel, Microsoft Excel Viewer, Excel. This...
CVE-2018-8579
An information disclosure vulnerability exists when attaching files to Outlook messages, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8558...
CVE-2018-8558
An information disclosure vulnerability exists when Microsoft Outlook fails to respect "Default link type" settings configured via the SharePoint Online Admin Center, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. This CVE ID is...
CVE-2018-8579
CVE-2018-8579 is described as an information disclosure vulnerability in Microsoft Outlook related to attaching files to messages. The affected products listed are Office 365 ProPlus and Microsoft Office. The provided sources indicate this CVE is distinct from CVE-2018-8558, but do not include co...
Microsoft Outlook CVE-2018-8582 Remote Code Execution Vulnerability
Description Microsoft Outlook is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the affected system. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Office 2019 for 32-bi...
Microsoft Outlook CVE-2018-8558 Information Disclosure Vulnerability
Description Microsoft Outlook is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2019 for 32-bit editions Microsoft Office 2019 for 64-bit editions Microsoft...
Microsoft Outlook CVE-2018-8524 Remote Code Execution Vulnerability
Description Microsoft Outlook is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Office 2019...
CVE-2018-8504
A remote code execution vulnerability exists in Microsoft Word software when the software fails to properly handle objects in Protected View, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft SharePoint Server, Office 365 ProPlus, Microsoft Office, Microsoft Word...
CVE-2018-8501
A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in Protected View, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Office 365 ProPlus, PowerPoint Viewer, Microsoft Office, Microsoft...