Lucene search
AnonymousZDI-21-334HistoryMar 17, 2021 - 12:00 a.m.
Microsoft Office Graph Uninitialized Variable Remote Code Execution Vulnerability
2021-03-1700:00:00
Anonymous
www.zerodayinitiative.com
31
microsoft office
graph com object
remote code execution
memory initialization
EPSS
0.009
Percentile
83.0%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Graph COM object. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
prion
prion
Remote code execution
2021-03-11 16:15:00
cvelist
cvelist
CVE-2021-27057 Microsoft Office Remote Code Execution Vulnerability
2021-03-11 15:48:21
cve
cve
CVE-2021-27057
2021-03-11 16:15:17
mscve
mscve
Microsoft Office Remote Code Execution Vulnerability
2021-03-09 08:00:00
nvd
nvd
CVE-2021-27057
2021-03-11 16:15:17
mskb
mskb
openvas
openvas
Microsoft Office 2019 Multiple Vulnerabilities (Mar 2021) - Mac OS X
2021-03-12 00:00:00
Microsoft Office 2016 Remote Code Execution Vulnerabilities (KB4493200)
2021-03-10 00:00:00
Microsoft Office 2013 Remote Code Execution Vulnerabilities (KB4493203)
2021-03-10 00:00:00
nessus
nessus
Security Updates for Microsoft Office (March 2021) (macOS)
2021-03-22 00:00:00
Security Updates for Microsoft Office Online Server and Microsoft Office Web Apps (March 2021)
2021-03-10 00:00:00
Security Updates for Microsoft Excel Products (March 2021)
2021-03-09 00:00:00
kaspersky
kaspersky
KLA12109 Multiple vulnerabilities in Microsoft Office
2021-03-09 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - March 2021
2021-03-09 22:13:03