Published: 11/02/2015 Updated: 12/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Automation Services in SharePoint Server 2010, Web Applications 2010 SP2, Word Viewer, and Office Compatibility Pack SP3 allow remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Office Remote Code Execution Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft web applications 2010
microsoft office compatibility pack
microsoft word automation services -
microsoft word 2010
microsoft word 2007
microsoft word viewer
microsoft office 2010
microsoft sharepoint server 2010

Source: codegooglecom/p/google-security-research/issues/detail?id=170&can=1 The following access violation was observed in Microsoft Office 2007 (Word document): (e24e28): Access violation - code c0000005 (first chance) First chance exceptions are reported before any exception handling This exception may be expected and handled e ...

CWE-399 http://www.securityfocus.com/bid/72463 http://secunia.com/advisories/62808 http://www.securitytracker.com/id/1031720 https://www.exploit-db.com/exploits/37967/https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-012 https://nvd.nist.gov https://www.exploit-db.com/exploits/37967/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-0064

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect