Description
Multiple serious vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information.
Below is a complete list of vulnerabilities:
- Multiple improper object handling vulnerabilities in Microsoft Excel can be exploited remotely to execute arbitrary code;
- An out-of-bound memory read vulnerability can be exploited remotely to obtain sensitive information;
- An improper object handling vulnerability in Microsoft PowerPoint can be exploited remotely to execute arbitrary code;
- An improper object handling vulnerability in Microsoft Excel can be exploited remotely to obtain sensitive information.
Original advisories
- CVE-2018-8375
- CVE-2018-8412
- CVE-2018-8378
- CVE-2018-8376
- CVE-2018-8382
- ADV180021
- CVE-2018-8379
- CVE-2018-8375
- CVE-2018-8412
- CVE-2018-8378
- CVE-2018-8376
Exploitation
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2018-8379 critical
- CVE-2018-8375 critical
- CVE-2018-8412 warning
- CVE-2018-8378 warning
- CVE-2018-8376 critical
- CVE-2018-8382 warning
KB list
- 4018310
- 4018392
- 4032213
- 4032222
- 4032240
- 3213636
- 4022238
- 4022236
- 4032220
- 4032212
- 4032233
- 4032239
- 4022234
- 4032256
- 4022195
- 4032229
- 4032223
- 4092434
- 4022198
- 4032241
- 4032215
- 4092433
- 4032235
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!