CVE-2017-0243

Опубликовано: 11 июл. 2017

Источник: nvd

CVSS3: 7.8

CVSS2: 9.3

EPSS Средний

Описание

Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8570.

Ссылки

http://www.securityfocus.com/bid/99446
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1038851
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-0243
Patch
Vendor Advisory
http://www.securityfocus.com/bid/99446
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1038851
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-0243
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:business_productivity_servers:2010:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2010:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:web_applications:2010:sp2:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.27911

Средний

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2017-0243

msrc

почти 8 лет назад

Microsoft Office Remote Code Execution Vulnerability

GHSA-c2m8-mp3j-qvvc