Microsoft Office 2007 SP2, Microsoft Office Word Viewer, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow a remote code execution vulnerability, due to how Office handles objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE is unique from CVE-2018-0852.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/102870 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1040381 | Third Party Advisory VDB Entry |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0851 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/102870 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1040381 | Third Party Advisory VDB Entry |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0851 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:39
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/102870 - Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id/1040381 - Third Party Advisory, VDB Entry | |
References | () https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0851 - Patch, Vendor Advisory |
Information
Published : 2018-02-15 02:29
Updated : 2024-11-21 03:39
NVD link : CVE-2018-0851
Mitre link : CVE-2018-0851
CVE.ORG link : CVE-2018-0851
JSON object : View
Products Affected
microsoft
- office
- office_word_viewer
- outlook
CWE
CWE-787
Out-of-bounds Write