CVE-2017-8742

EPSS 21.3%

Vexday Risk Score

8Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS —EPSS 21.3%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

13 set 2017Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

A remote code execution vulnerability exists in Microsoft PowerPoint 2007 Service Pack 3, Microsoft PowerPoint 2010 Service Pack 2, Microsoft PowerPoint 2013 Service Pack 1, Microsoft PowerPoint 2013 RT Service Pack 1, Microsoft PowerPoint 2016, Microsoft PowerPoint Viewer 2007, Microsoft SharePoint Server 2013 Service Pack 1, Microsoft SharePoint Enterprise Server 2016, Microsoft Office Web Apps 2010 Service Pack 2, and Microsoft Office Compatibility Pack Service Pack 3 when they fail to properly handle objects in memory, aka "PowerPoint Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8743.

Produtos afetados

Microsoft Corporation · Microsoft Office

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8742 http://www.securityfocus.com/bid/100741 http://www.securitytracker.com/id/1039323