Lucene search
Steven Seeley (mr_me) of Offensive SecurityZDI-17-727HistorySep 15, 2017 - 12:00 a.m.
Microsoft Office Excel xlsb File Heap-based Buffer Overflow Remote Code Execution Vulnerability
2017-09-1500:00:00
Steven Seeley (mr_me) of Offensive Security
www.zerodayinitiative.com
59
EPSS
0.337
Percentile
97.1%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of Excel Binary files. Crafted data within an xlsb file can trigger an overflow of a heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process.
Related
openvas
openvas
mskb
mskb
Security update 2017-09-12
2017-09-12 07:00:00
Security update 2017-09-12
2017-09-12 07:00:00
symantec
symantec
Microsoft Office CVE-2017-8631 Memory Corruption Vulnerability
2017-09-12 00:00:00
mscve
mscve
Microsoft Office Remote Code Execution Vulnerability
2017-09-12 07:00:00
nessus
nessus
Security Update for Microsoft Office Excel Products (September 2017)
2017-09-12 00:00:00
Security Update for Microsoft Office (September 2017) (macOS)
2017-09-12 00:00:00
prion
prion
Remote code execution
2017-09-13 01:29:00
Remote code execution
2017-09-13 01:29:00
Remote code execution
2017-09-13 01:29:00
nvd
nvd
cve
cve
cvelist
cvelist
kaspersky
kaspersky
KLA11100 Multiple vulnerabilities in Microsoft Office
2017-09-12 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - September 2017
2017-09-12 15:41:00
trendmicroblog
trendmicroblog