Описание
Multiple vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain priveleges and obtain sensitive information. Below is a complete list of vulnerabilities:
- Remote code execution vulnerability in Microsoft Office software can be exploited via specially crafted file to execute arbitrary code;
- An elevation of privilege vulnerability in Microsoft Outlook software can be exploited via specially crafted file to gain priveleges;
- An elevation of privilege vulnerability in Microsoft SharePoint Server software can be exploited via specially crafted request to gain priveleges;
- An information disclosure vulnerability in Microsoft Office software can be exploited via specially crafted file to obtain sensitive information.
Первичный источник обнаружения
Эксплуатация
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Связанные продукты
Список CVE
- CVE-2018-0850 warning
- CVE-2018-0851 critical
- CVE-2018-0852 critical
- CVE-2018-0853 warning
- CVE-2018-0864 warning
- CVE-2018-0869 warning
- CVE-2018-0841 critical
Список KB
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!