Kaspersky База Угроз

Описание

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, bypass security restrictions.

Below is a complete list of vulnerabilities:

An information disclosure vulnerability in Windows GDI+ can be exploited remotely via specially crafted application to obtain sensitive information.
Windows graphics on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, Windows Server 2016, Microsoft Office Word Viewer, Microsoft Office 2007 Service Pack 3 , and Microsoft Office 2010 Service Pack 2 allows an attacker to execute remote code by the way it handles embedded fonts, aka «Win32k Graphics Remote Code Execution Vulnerability». This CVE ID is unique from CVE-2017-8683.
An information disclosure vulnerability in Windows Uniscribe can be exploited remotely via specially crafted document to obtain sensitive information.
Windows Uniscribe in Microsoft Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Office 2007 SP3; Office 2010 SP2; Word Viewer; Office for Mac 2011 and 2016; Skype for Business 2016; Lync 2013 SP1; Lync 2010; Lync 2010 Attendee; and Live Meeting 2007 Add-in and Console allows an attacker to execute code remotely via a specially crafted website or a specially crafted document or email attachment, aka «Microsoft Graphics Component Remote Code Execution.»
An elevation of privilege vulnerability exists in Microsoft SharePoint Foundation 2013 Service Pack 1 when it does not properly sanitize a specially crafted web request to an affected SharePoint server, aka «Microsoft SharePoint Cross Site Scripting Vulnerability».
A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, and Microsoft Excel 2016 when they fail to properly handle objects in memory, aka «Microsoft Office Memory Corruption Vulnerability». This CVE ID is unique from CVE-2017-8630, CVE-2017-8632, and CVE-2017-8731.
A remote code execution vulnerability exists in Microsoft PowerPoint 2016, Microsoft SharePoint Enterprise Server 2016, and Office Online Server when they fail to properly handle objects in memory, aka «PowerPoint Remote Code Execution Vulnerability». This CVE ID is unique from CVE-2017-8742.
A remote code execution vulnerability exists in Microsoft PowerPoint 2007 Service Pack 3, Microsoft PowerPoint 2010 Service Pack 2, Microsoft PowerPoint 2013 Service Pack 1, Microsoft PowerPoint 2013 RT Service Pack 1, Microsoft PowerPoint 2016, Microsoft PowerPoint Viewer 2007, Microsoft SharePoint Server 2013 Service Pack 1, Microsoft SharePoint Enterprise Server 2016, Microsoft Office Web Apps 2010 Service Pack 2, and Microsoft Office Compatibility Pack Service Pack 3 when they fail to properly handle objects in memory, aka «PowerPoint Remote Code Execution Vulnerability». This CVE ID is unique from CVE-2017-8743.
A remote code execution vulnerability exists in Microsoft Publisher 2007 Service Pack 3 and Microsoft Publisher 2010 Service Pack 2 when they fail to properly handle objects in memory, aka «Microsoft Office Publisher Remote Code Execution».
A remote code execution vulnerability exists in Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Excel for Mac 2011, Microsoft Excel 2016 for Mac, and Microsoft Office Compatibility Pack Service Pack 3, when they fail to properly handle objects in memory, aka «Microsoft Office Memory Corruption Vulnerability». This CVE ID is unique from CVE-2017-8630, CVE-2017-8631, and CVE-2017-8744.
A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Office Compatibility Pack Service Pack 3, Microsoft Excel Web App 2013 Service Pack 1, Microsoft Excel Viewer 2007 Service Pack 3, and Office Online Server when they fail to properly handle objects in memory, aka «Microsoft Office Memory Corruption Vulnerability». This CVE ID is unique from CVE-2017-8630, CVE-2017-8632, and CVE-2017-8744.
Microsoft Office 2016 allows a remote code execution vulnerability when it fails to properly handle objects in memory, aka «Microsoft Office Memory Corruption Vulnerability». This CVE ID is unique from CVE-2017-8631, CVE-2017-8632, and CVE-2017-8744.
Microsoft SharePoint Server 2013 Service Pack 1 allows an elevation of privilege vulnerability when it fails to properly sanitize a specially crafted web request to an affected SharePoint server, aka «Microsoft SharePoint XSS Vulnerability».
A remote code execution vulnerability exists in Microsoft Excel for Mac 2011 when it fails to properly handle objects in memory, aka «Microsoft Office Remote Code Execution».

Первичный источник обнаружения

CVE-2017-8676
CVE-2017-8682
CVE-2017-8695
CVE-2017-8696
CVE-2017-8745
CVE-2017-8744
CVE-2017-8743
CVE-2017-8742
CVE-2017-8725
CVE-2017-8632
CVE-2017-8631
CVE-2017-8630
CVE-2017-8629
CVE-2017-8567

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

CVE-2017-8676
warning
CVE-2017-8682
critical
CVE-2017-8695
high
CVE-2017-8696
critical
CVE-2017-8745
high
CVE-2017-8744
critical
CVE-2017-8743
critical
CVE-2017-8742
critical
CVE-2017-8725
critical
CVE-2017-8632
critical
CVE-2017-8631
critical
CVE-2017-8630
critical
CVE-2017-8629
high
CVE-2017-8567
critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!