← back
CVE-2017-0030

CVE-2017-0030

EPSS 26.0%
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 26.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
17 Mar 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Microsoft Office 2010 SP2, Office Compatibility Pack SP3, Office Web Apps Server 2010 SP2, Word 2007 SP3, Word 2010 SP2, and Word Automation Services on SharePoint Server 2010 SP2 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." This vulnerability is different from those described in CVE-2017-0006, CVE-2017-0019, CVE-2017-0020, CVE-2017-0031, CVE-2017-0052, and CVE-2017-0053.
Affected products
Microsoft Corporation · Office

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0030http://www.securityfocus.com/bid/96051http://www.securitytracker.com/id/1038010