An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could craft a special document file and then convince the user to open it. An attacker must know the memory address location where the object was created. The update addresses the vulnerability by changing the way certain Word functions handle objects in memory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft word 2013 |
||
microsoft word 2016 |
||
microsoft office web apps 2013 |
||
microsoft office web apps 2010 |
||
microsoft sharepoint server 2010 |
||
microsoft office 2010 |
||
microsoft sharepoint enterprise server 2016 |
||
microsoft word 2010 |
||
microsoft office online server - |
||
microsoft sharepoint enterprise server 2013 |
||
microsoft sharepoint server 2019 |
||
microsoft office 2019 |
||
microsoft 365 apps - |
||
microsoft office 2016 |
Please, thanks, good show, cheers, ta
Patch Tuesday Patch Tuesday used to be Microsoft's day to release patches. Now Adobe, Intel, and SAP are routinely joining the fun – with special guest star Red Hat this month. If you've felt overwhelmed by the sheer number of security patches Microsoft has emitted this year, you are not alone. Patch watchers at the Zero Day Initiative said that, including the 120 product security bulletins posted this August, Microsoft is just 11 patches away from surpassing its 2019 full-year total with four...