Vulnerability in Microsoft Office
CVE-2018-8504
A remote code execution vulnerability exists in Microsoft Word software when the software fails to properly handle objects in Protected View, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft SharePoint Serve…
EPSS: 0.264 (96.4th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Office — versions 2010 Service Pack 2 (32-bit editions), 2010 Service Pack 2 (64-bit editions), 2013 RT Service Pack 1
- Microsoft Sharepoint Server — versions 2010 Service Pack 2
- Microsoft Word — versions 2010 Service Pack 2 (32-bit editions), 2010 Service Pack 2 (64-bit editions), 2013 RT Service Pack 1
- Microsoft Office — versions 365 ProPlus for 32-bit Systems, 365 ProPlus for 64-bit Systems
References
- 105499 (vdb-entry, x_refsource_BID)
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8504 (x_refsource_CONFIRM)
- 1041840 (vdb-entry, x_refsource_SECTRACK)