CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
96.1%
Memory corruption vulnerabilities was found in Microsoft Office software. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited via specially crafted file to execute arbitrary code.
CVE-2018-0849 critical
CVE-2018-0862 critical
CVE-2018-0848 critical
CVE-2018-0845 critical
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
support.microsoft.com/kb/4011574
support.microsoft.com/kb/4011607
support.microsoft.com/kb/4011610
support.microsoft.com/kb/4011643
support.microsoft.com/kb/4011651
support.microsoft.com/kb/4011656
support.microsoft.com/kb/4011657
support.microsoft.com/kb/4011659
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0845
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0848
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0849
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0862
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Office/
threats.kaspersky.com/en/product/Microsoft-Word/
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
96.1%