ID CVE-2015-2470
Summary Integer underflow in Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office for Mac 2011, and Word Viewer allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Integer Underflow Vulnerability."
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:office:2010:sp2:-:-:-:-:x64
    cpe:2.3:a:microsoft:office:2010:sp2:-:-:-:-:x64
  • cpe:2.3:a:microsoft:office:2010:sp2:-:-:-:-:x86
    cpe:2.3:a:microsoft:office:2010:sp2:-:-:-:-:x86
  • cpe:2.3:a:microsoft:office:2011:-:-:-:mac
    cpe:2.3:a:microsoft:office:2011:-:-:-:mac
  • Microsoft Office 2013 SP1
    cpe:2.3:a:microsoft:office:2013:sp1
  • Microsoft Word 2007 Service Pack 3
    cpe:2.3:a:microsoft:word:2007:sp3
  • Microsoft Word Viewer
    cpe:2.3:a:microsoft:word_viewer
CVSS
Base: 9.3 (as of 18-08-2015 - 10:52)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
description Microsoft Office 2007 MSPTLS Heap Index Integer Underflow - MS15-081. CVE-2015-2470. Dos exploit for windows platform
file exploits/windows/dos/37924.txt
id EDB-ID:37924
last seen 2016-02-04
modified 2015-08-21
platform windows
port
published 2015-08-21
reporter Google Security Research
source https://www.exploit-db.com/download/37924/
title Microsoft Office 2007 MSPTLS Heap Index Integer Underflow - MS15-081
type dos
msbulletin via4
bulletin_id MS15-081
bulletin_url
date 2015-08-11T00:00:00
impact Remote Code Execution
knowledgebase_id 3080790
knowledgebase_url
severity Critical
title Vulnerabilities in Microsoft Office Could Allow Remote Code Execution
nessus via4
  • NASL family Windows : Microsoft Bulletins
    NASL id SMB_NT_MS15-081.NASL
    description The remote Windows host has a version of Microsoft Office, Word, Word Viewer, Excel, PowerPoint, Visio, SharePoint Server, Microsoft Office Compatibility Pack, Microsoft Word Web Apps, or Microsoft Office Web Apps installed that is affected by multiple remote code execution vulnerabilities : - Multiple remote code execution vulnerabilities exist due to improper handling of objects in memory. A remote attacker can exploit these vulnerabilities by convincing a user to open a specially crafted Office file, resulting in the execution of arbitrary code in the context of the current user. (CVE-2015-1642, CVE-2015-2467, CVE-2015-2468, CVE-2015-2469, CVE-2015-2477) - An information disclosure vulnerability exists when files at a medium integrity level become accessible to Internet Explorer running in Enhanced Protection Mode (EPM). An attacker can exploit this vulnerability by leveraging another vulnerability to execute code in IE with EPM, and then executing Excel, Notepad, PowerPoint, Visio, or Word using an unsafe command line parameter. (CVE-2015-2423) - A remote code execution vulnerability exists due a failure to properly validate templates. A remote attacker can exploit this vulnerability by convincing a user to open a specially crafted template file, resulting in the execution of arbitrary code in the context of the current user. (CVE-2015-2466) - A remote code execution vulnerability exists when Office decreases an integer value beyond its intended minimum value. A remote attacker can exploit this vulnerability by convincing a user to open a specially crafted Office file, resulting in the execution of arbitrary code in the context of the current user. (CVE-2015-2470)
    last seen 2019-02-21
    modified 2018-08-03
    plugin id 85350
    published 2015-08-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=85350
    title MS15-081: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3080790)
  • NASL family MacOS X Local Security Checks
    NASL id MACOSX_MS15-081_OFFICE_2011.NASL
    description The remote Mac OS X host has a version of Microsoft Office installed that is affected by multiple remote code execution vulnerabilities : - Multiple remote code execution vulnerabilities exist due to improper handling of objects in memory. A remote attacker can exploit these vulnerabilities by convincing a user to open a specially crafted Office file, resulting in the execution of arbitrary code in the context of the current user. (CVE-2015-2468, CVE-2015-2469, CVE-2015-2477) - A remote code execution vulnerability exists when Office decreases an integer value beyond its intended minimum value. A remote attacker can exploit this vulnerability by convincing a user to open a specially crafted Office file, resulting in the execution of arbitrary code in the context of the current user. (CVE-2015-2470)
    last seen 2019-02-21
    modified 2018-08-10
    plugin id 85349
    published 2015-08-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=85349
    title MS15-081: Vulnerability in Microsoft Office Could Allow Remote Code Execution (3072620) (Mac OS X)
refmap via4
ms MS15-081
sectrack 1033239
Last major update 18-08-2015 - 11:11
Published 14-08-2015 - 20:59
Last modified 30-10-2018 - 12:27
Back to Top