Description
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A remote code execution vulnerability in Microsoft Word can be exploited remotely via specially crafted file to execute arbitrary code.
- A cross-site-scripting (XSS) vulnerability Microsoft SharePoint Reflective can be exploited remotely via specially crafted request to spoof user interface.
- A cross-site-scripting (XSS) vulnerability Microsoft Office SharePoint can be exploited remotely via specially crafted web to spoof user interface.
Original advisories
- CVE-2020-0795
- CVE-2020-0850
- CVE-2020-0851
- CVE-2020-0852
- CVE-2020-0891
- CVE-2020-0892
- CVE-2020-0893
- CVE-2020-0894
Related products
CVE list
- CVE-2020-0855 critical
- CVE-2020-0795 warning
- CVE-2020-0850 high
- CVE-2020-0851 critical
- CVE-2020-0852 critical
- CVE-2020-0891 warning
- CVE-2020-0892 critical
- CVE-2020-0893 warning
- CVE-2020-0894 warning
KB list
- 4484237
- 4484272
- 4484277
- 4484197
- 4484242
- 4484275
- 4484231
- 4484282
- 4484124
- 4475606
- 4484271
- 4484270
- 4475602
- 4475597
- 4484150
- 4484240
- 4484268
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!