Vulnerability in Microsoft Office_compatibility_pack
CVE-2012-2528
Use-after-free vulnerability in Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; Word Automation Services on Microsoft SharePoint Server 2010; and Office Web Apps 2010 SP1 allows…
EPSS: 0.569 (98.2th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Office_compatibility_pack
- Microsoft Office_web_apps — versions 2010
- Microsoft Sharepoint_server — versions 2010
- Microsoft Word — versions 2003, 2007, 2010
- Microsoft Word_automation_services
- Microsoft Word_viewer
- N/a — versions n/a
Weakness classification (CWE)
References
- oval:org.mitre.oval:def:15680 (x_refsource_OVAL, signature, vdb-entry)
- 55781 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- TA12-283A (US Government Resource, Third Party Advisory, x_refsource_CERT, third-party-advisory)
- MS12-064 (x_refsource_MS, vendor-advisory)