Lucene search
Eduardo Braun PradoZDI-18-952HistoryAug 14, 2018 - 12:00 a.m.
Microsoft Office Word Preview Unsafe Hyperlink Remote Code Execution Vulnerability
2018-08-1400:00:00
Eduardo Braun Prado
www.zerodayinitiative.com
11
0.31 Low
EPSS
Percentile
97.0%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the display of Word documents in the preview pane in Windows Explorer. Crafted data in a Word file can result in a dangerous link being followed without first warning the user. An attacker can leverage this vulnerability to execute under the context of the current user at medium integrity.
Related
mscve
mscve
Internet Explorer Remote Code Execution Vulnerability
2018-08-14 07:00:00
cvelist
cvelist
CVE-2018-8316
2018-08-15 17:00:00
symantec
symantec
nvd
nvd
CVE-2018-8316
2018-08-15 17:29:03
cve
cve
CVE-2018-8316
2018-08-15 17:29:03
prion
prion
Remote code execution
2018-08-15 17:29:00
mskb
mskb
Cumulative security update for Internet Explorer: August 14, 2018
2018-08-14 07:00:00
August 14, 2018âKB4343899 (Security-only update)
2018-08-14 07:00:00
August 14, 2018âKB4343901 (Monthly Rollup)
2018-08-14 07:00:00
nessus
nessus
Security Updates for Internet Explorer (August 2018)
2018-08-14 00:00:00
KB4343896: Windows Server 2012 August 2018 Security Update (Foreshadow)
2018-08-14 00:00:00
kaspersky
kaspersky
KLA11306 Multiple vulnerabilities in Microsoft Browsers
2018-08-14 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4343898)
2018-08-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4343900)
2018-08-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4343892)
2018-08-15 00:00:00
talosblog
talosblog
Microsoft Tuesday August 2018
2018-08-14 11:26:00