Описание
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, execute arbitrary code, bypass security restrictions.
Below is a complete list of vulnerabilities:
- An information disclosure vulnerability in Microsoft SharePoint can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Microsoft SharePoint can be exploited remotely to spoof user interface.
- A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Microsoft Office Access Connectivity Engine can be exploited remotely to execute arbitrary code.
- A spoofing vulnerability in Microsoft Office Online can be exploited remotely to spoof user interface.
- A remote code execution vulnerability in Microsoft SharePoint can be exploited remotely to execute arbitrary code.
- A security feature bypass vulnerability in Microsoft Excel can be exploited remotely to bypass security restrictions.
- A security feature bypass vulnerability in Microsoft Word can be exploited remotely to bypass security restrictions.
- A remote code execution vulnerability in Microsoft Teams can be exploited remotely to execute arbitrary code.
Первичный источник обнаружения
- CVE-2020-17017
CVE-2020-17016
CVE-2020-17019
CVE-2020-17015
CVE-2020-17062
CVE-2020-17063
CVE-2020-16979
CVE-2020-17060
CVE-2020-17061
CVE-2020-17067
CVE-2020-17064
CVE-2020-17065
CVE-2020-17066
CVE-2020-17020
CVE-2020-17091
Эксплуатация
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Связанные продукты
Список CVE
- CVE-2020-17017 high
- CVE-2020-17016 critical
- CVE-2020-17019 critical
- CVE-2020-17015 warning
- CVE-2020-17062 critical
- CVE-2020-17063 high
- CVE-2020-16979 high
- CVE-2020-17060 high
- CVE-2020-17061 critical
- CVE-2020-17067 critical
- CVE-2020-17064 critical
- CVE-2020-17065 critical
- CVE-2020-17066 critical
- CVE-2020-17020 warning
- CVE-2020-17091 critical
Список KB
- 4486733
- 4486730
- 4486719
- 4486718
- 4486734
- 4486714
- 4486717
- 4486738
- 4486713
- 4486743
- 4484520
- 4484508
- 4486722
- 4486723
- 4486725
- 4486740
- 4486727
- 4486706
- 4484534
- 4486744
- 4486737
- 4484455
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!