Descripción
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Office SharePoint can be exploited remotely via specially crafted web to spoof user interface.
- A remote code execution vulnerability in Microsoft Excel can be exploited remotely via specially crafted file to execute arbitrary code.
- A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely via specially crafted page to execute arbitrary code.
- A remote code execution vulnerability in Microsoft SharePoint can be exploited remotely via specially crafted to execute arbitrary code.
- An information disclosure vulnerability in Microsoft SharePoint can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Microsoft SharePoint can be exploited remotely via specially crafted web to spoof user interface.
Notas informativas originales
- CVE-2020-0901
- CVE-2020-1069
- CVE-2020-1024
- CVE-2020-1100
- CVE-2020-1101
- CVE-2020-1023
- CVE-2020-1103
- CVE-2020-1102
- CVE-2020-1105
- CVE-2020-1104
- CVE-2020-1107
- CVE-2020-1106
Explotación
Public exploits exist for this vulnerability.
Productos relacionados
Lista CVE
- CVE-2020-1099 high
- CVE-2020-0901 critical
- CVE-2020-1069 critical
- CVE-2020-1024 critical
- CVE-2020-1100 high
- CVE-2020-1101 high
- CVE-2020-1023 critical
- CVE-2020-1103 high
- CVE-2020-1102 critical
- CVE-2020-1105 high
- CVE-2020-1104 high
- CVE-2020-1107 high
- CVE-2020-1106 high
Lista KB
Leer más
Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com
¿Has encontrado algún error en la descripción de esta vulnerabilidad? ¡Háznoslo saber!