Описание
Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code and obtain sensitive information.
Below is a complete list of vulnerabilities:
- An improper handling of input in Microsoft Office Outlook can be exploited via a specially designed document file to bypass security restrictions;
- An incorrect disclosure the contents of memory in Microsoft Office can be exploited via a specially designed document file to obtain sensitive information;
- An improper parsing of email messages in Microsoft Outlook can be exploited by sending a specially designed file to the user and then convincing the user to open the file to execute arbitrary code.
Первичный источник обнаружения
Связанные продукты
Список CVE
- CVE-2017-8571 high
- CVE-2017-8572 warning
- CVE-2017-8663 critical
Список KB
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!