KLA10456
SB vulnerability in MS Office
Обновлено: 17/06/2019
Дата обнаружения
10/02/2015
Уровень угрозы
Warning
Описание

An use-after-free vulnerability was found in Microsoft Office. By exploiting this vulnerability malicious users can bypass ASLR protection. This vulnerability can be exploited remotely via a specially designed document.

Пораженные продукты

Microsoft Office 2007 Service Pack 3 
Microsoft Office 2010 Service Pack 2
Microsoft Office 2013
Microsoft Office 2013 Service Pack 1

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
MS bulletin
CVE-2014-6362
Оказываемое влияние
?
SB 
[?]
Связанные продукты
Microsoft Office
CVE-IDS
CVE-2014-63624.3Warning
Microsoft official advisories
Microsoft Security Update Guide
KB list

2920795
2920748
2910941
3033857