Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiJaanus KpClarified SecurityZDI-17-847
HistoryOct 11, 2017 - 12:00 a.m.

Microsoft Office Excel xls File Out-Of-Bounds Read Information Disclosure Vulnerability

2017-10-1100:00:00
Jaanus KpClarified Security
www.zerodayinitiative.com
32

EPSS

0.004

Percentile

72.5%

JSON

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of Excel workbook files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.

Related

cvelist 1
zdi 1
nvd 1
mscve 1
cve 1
symantec 1
prion 1
mskb 8
nessus 9
openvas 8
kaspersky 2
myhack58 1
trendmicroblog 1
talosblog 1
cvelist
cvelist
CVE-2017-11790
2017-10-13 13:00:00
zdi
zdi
Microsoft Windows URL Moniker Out-Of-Bounds Read Information Disclosure Vulnerability
2018-04-17 00:00:00
nvd
nvd
CVE-2017-11790
2017-10-13 13:29:00
mscve
mscve
Internet Explorer Information Disclosure Vulnerability
2017-10-10 07:00:00
cve
cve
CVE-2017-11790
2017-10-13 13:29:00
symantec
symantec
Microsoft Internet Explorer CVE-2017-11790 Information Disclosure Vulnerability
2017-10-10 00:00:00
prion
prion
Information disclosure
2017-10-13 13:29:00
mskb
mskb
Cumulative security update for Internet Explorer: October 10, 2017
2017-10-10 07:00:00
October 10, 2017—KB4041690 (Monthly Rollup)
2017-10-16 07:00:00
October 10, 2017—KB4041681 (Monthly Rollup)
2017-10-16 07:00:00
nessus
nessus
Security Updates for Internet Explorer (October 2017)
2017-11-30 00:00:00
Windows 2008 October 2017 Multiple Security Updates (KRACK)
2017-10-12 00:00:00
Windows Server 2012 October 2017 Security Updates (KRACK)
2017-10-10 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (KB4040685)
2017-10-11 00:00:00
Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4041690)
2017-10-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4041681)
2017-10-11 00:00:00
kaspersky
kaspersky
KLA11108 Multiple vulnerabilities in Microsoft Products (ESU)
2017-10-10 00:00:00
KLA11112 Multiple vulnerabilities in Microsoft Browsers
2017-10-10 00:00:00
myhack58
myhack58
Microsoft windows October release of the 62 flaws vulnerability bug patch, and repair of the National researchers submitted the 0-day flaw vulnerability bug-vulnerability warning-the black bar safety net
2017-10-12 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of October 9, 2017
2017-10-13 14:03:59
talosblog
talosblog
Microsoft Patch Tuesday - October 2017
2017-10-10 13:25:00

EPSS

0.004

Percentile

72.5%

JSON
Related for ZDI-17-847
cvelist1zdi1nvd1mscve1cve1symantec1prion1mskb8nessus9openvas8kaspersky2myhack581trendmicroblog1talosblog1