Description
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Office SharePoint can be exploited remotely via specially crafted web to spoof user interface.
- A remote code execution vulnerability in Microsoft Excel can be exploited remotely via specially crafted file to execute arbitrary code.
- A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely via specially crafted page to execute arbitrary code.
- A remote code execution vulnerability in Microsoft SharePoint can be exploited remotely via specially crafted to execute arbitrary code.
- An information disclosure vulnerability in Microsoft SharePoint can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Microsoft SharePoint can be exploited remotely via specially crafted web to spoof user interface.
Original advisories
- CVE-2020-0901
- CVE-2020-1069
- CVE-2020-1024
- CVE-2020-1100
- CVE-2020-1101
- CVE-2020-1023
- CVE-2020-1103
- CVE-2020-1102
- CVE-2020-1105
- CVE-2020-1104
- CVE-2020-1107
- CVE-2020-1106
Related products
CVE list
- CVE-2020-1099 warning
- CVE-2020-0901 critical
- CVE-2020-1069 high
- CVE-2020-1024 high
- CVE-2020-1100 warning
- CVE-2020-1101 warning
- CVE-2020-1023 high
- CVE-2020-1103 warning
- CVE-2020-1102 high
- CVE-2020-1105 warning
- CVE-2020-1104 warning
- CVE-2020-1107 warning
- CVE-2020-1106 warning
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!