- Home
- CVEs with nessus.description==The+Microsoft+Office+application+installed+on+the+remote+Windows+host+is+missing+a+security+update.+It+is%2C+therefore%2C+affected+by+multiple+vulnerabilities+%3A%0A%0A++-+Multiple+remote+code+execution+vulnerabilities+exist+in+++++Microsoft+Office+due+to+improper+validation+of+input+++++before+loading+dynamic+link+library+%28DLL%29+files.+An+++++unauthenticated%2C+remote+attacker+can+exploit+these%2C+by+++++convincing+a+user+to+open+a+specially+crafted+Office+++++document%2C+to+execute+arbitrary+code+in+the+context+of+++++the+current+user.+%28CVE-2017-0260.+CVE-2017-8506%29%0A%0A++-+Multiple+information+disclosure+vulnerabilities+exist+in+++++Windows+Uniscribe+due+to+improper+handling+of+objects+in+++++memory.+An+unauthenticated%2C+remote+attacker+can+exploit+++++these%2C+by+convincing+a+user+to+visit+a+specially+crafted+++++website+or+to+open+a+specially+crafted+document+file%2C+to+++++disclose+the+contents+of+memory.+%28CVE-2017-0282%2C+++++CVE-2017-0284%2C+CVE-2017-0285%2C+CVE-2017-8534%29%0A%0A++-+Multiple+remote+code+execution+vulnerabilities+exist+in+++++Windows+Uniscribe+due+to+improper+handling+of+objects+in+++++memory.+An+unauthenticated%2C+remote+attacker+can+exploit+++++these%2C+by+convincing+a+user+to+visit+a+specially+crafted+++++website+or+open+a+specially+crafted+document%2C+to+execute+++++arbitrary+code+in+the+context+of+the+current+user.%0A++++%28CVE-2017-0283%2C+CVE-2017-8528%29%0A%0A++-+Multiple+information+disclosure+vulnerabilities+exist+in+++++the+Windows+GDI+component+due+to+improper+handling+of+++++objects+in+memory.+An+unauthenticated%2C+remote+attacker+++++can+exploit+these%2C+by+convincing+a+user+to+visit+a+++++specially+crafted+website+or+to+open+a+specially+crafted+++++document+file%2C+to+disclose+the+contents+of+memory.%0A++++%28CVE-2017-0286%2C+CVE-2017-0287%2C+CVE-2017-0288%2C+++++CVE-2017-0289%2C+CVE-2017-8531%2C+CVE-2017-8532%2C+++++CVE-2017-8533%29%0A%0A++-+A+remote+code+execution+vulnerability+exists+in+++++Microsoft+Windows+due+to+improper+parsing+of+PDF+files.%0A++++An+unauthenticated%2C+remote+attacker+can+exploit+this%2C+by+++++convincing+a+user+to+open+a+specially+crafted+PDF+file%2C+++++to+execute+arbitrary+code+in+the+context+of+the+current+++++user.+%28CVE-2017-0292%29%0A%0A++-+A+remote+code+execution+vulnerability+exists+in+++++Microsoft+Outlook+due+to+improper+parsing+of+email+++++messages.+An+unauthenticated%2C+remote+attacker+can+++++exploit+this%2C+by+convincing+a+user+to+open+a+specially+++++crafted+email+message%2C+to+execute+arbitrary+code+in+the+++++context+of+the+current+user.+%28CVE-2017-8507%29%0A%0A++-+A+security+bypass+vulnerability+exists+in+Microsoft+++++Outlook+due+to+improper+parsing+of+file+formats.+An+++++unauthenticated%2C+remote+attacker+can+exploit+this%2C+by+++++convincing+a+user+to+open+a+specially+crafted+Office+++++document%2C+to+bypass+security+feature+protections.%0A++++%28CVE-2017-8508%29%0A%0A++-+Multiple+remote+code+execution+vulnerabilities+exist+in+++++Microsoft+Office+due+to+improper+handling+of+objects+in+++++memory.+An+unauthenticated%2C+remote+attacker+can+exploit+++++these%2C+by+convincing+a+user+to+open+a+specially+crafted+++++Office+document%2C+to+execute+arbitrary+code+in+the+++++context+of+the+current+user.+%28CVE-2017-8509%2C+++++CVE-2017-8510%2C+CVE-2017-8511%2C+CVE-2017-8512%2C+++++CVE-2017-8550%29%0A%0A++-+A+remote+code+execution+vulnerability+exists+in+++++Microsoft+PowerPoint+due+to+improper+handling+of+objects+++++in+memory.+An+unauthenticated%2C+remote+attacker+can+++++exploit+this%2C+by+convincing+a+user+to+open+a+specially+++++crafted+file%2C+to+execute+arbitrary+code+in+the+context+++++of+the+current+user.+%28CVE-2017-8513%29%0A%0A++-+A+remote+code+execution+vulnerability+exists+in+the+++++Windows+font+library+due+to+improper+handling+of+++++embedded+fonts.+An+unauthenticated%2C+remote+attacker+can+++++exploit+this%2C+by+convincing+a+user+to+visit+a+specially+++++crafted+website+or+open+a+specially+crafted+Microsoft+++++document%2C+to+execute+arbitrary+code+in+the+context+of+++++the+current+user.+%28CVE-2017-8527%29
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top