Multiple vulnerabilities in Microsoft Office

Descripción

Multiple serious vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. Multiple improper object handling vulnerabilities in Microsoft Excel can be exploited remotely to execute arbitrary code;
2. An out-of-bound memory read vulnerability can be exploited remotely to obtain sensitive information;
3. An improper object handling vulnerability in Microsoft PowerPoint can be exploited remotely to execute arbitrary code;
4. An improper object handling vulnerability in Microsoft Excel can be exploited remotely to obtain sensitive information.

Notas informativas originales

• CVE-2018-8379

• CVE-2018-8375
• CVE-2018-8412
• CVE-2018-8378
• CVE-2018-8376
• CVE-2018-8382
• ADV180021
• CVE-2018-8379
• CVE-2018-8375
• CVE-2018-8412
• CVE-2018-8378
• CVE-2018-8376

Explotación

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Productos relacionados

• Microsoft-Office

Lista CVE

• CVE-2018-8379
  critical
• CVE-2018-8375
  critical
• CVE-2018-8412
  warning
• CVE-2018-8378
  warning
• CVE-2018-8376
  critical
• CVE-2018-8382
  warning

Lista KB

• 4018310
• 4018392
• 4032213
• 4032222
• 4032240
• 3213636
• 4022238
• 4022236
• 4032220
• 4032212
• 4032233
• 4032239
• 4022234
• 4032256
• 4022195
• 4032229
• 4032223
• 4092434
• 4022198
• 4032241
• 4032215
• 4092433
• 4032235

Leer más

Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com