Vulnerability in Microsoft Office
CVE-2019-1462
A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka 'Microsoft PowerPoint Remote Code Execution Vulnerability'.
EPSS: 0.213 (95.8th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Office — versions 2019 for 32-bit editions, 2019 for 64-bit editions, 2019 for Mac
- Microsoft Powerpoint — versions 2013 Service Pack 1 (32-bit editions), 2013 Service Pack 1 (64-bit editions), 2013 RT Service Pack 1
- Microsoft Office 365 Proplus — versions 32-bit Systems, 64-bit Systems
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1462 (x_refsource_MISC)
- www.zerodayinitiative.com/advisories/ZDI-19-1006/ (x_refsource_MISC)