Published: 15/08/2015 Updated: 12/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office for Mac 2011, Office for Mac 2016, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, Word Web Apps 2010 SP2, and Office Web Apps Server 2013 SP1 allow remote malicious users to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft office 2011
microsoft office compatibility pack
microsoft word 2010
microsoft word 2013
microsoft sharepoint server 2013
microsoft word web apps 2010
microsoft word 2007
microsoft office 2010
microsoft word viewer
microsoft sharepoint server 2010
microsoft office 2016
microsoft word web apps server 2013

Source: codegooglecom/p/google-security-research/issues/detail?id=417&can=1 The following crash was observed in Microsoft Office 2007 with Microsoft Office File Validation Add-In disabled and Application Verifier enabled for testing and reproduction This bug did not reproduce in Office 2010 running on Windows 7 x86 The attached PoC ...

CWE-119 https://www.exploit-db.com/exploits/37912/http://www.securitytracker.com/id/1033239 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-081 https://nvd.nist.gov https://www.exploit-db.com/exploits/37912/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-2468

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect