Lucene search
KdotZDI-21-423HistoryApr 21, 2021 - 12:00 a.m.
Microsoft Word DOC File Parsing Use-After-Free Remote Code Execution Vulnerability
2021-04-2100:00:00
kdot
www.zerodayinitiative.com
40
0.016 Low
EPSS
Percentile
87.3%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DOC files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
openvas
openvas
Microsoft Word 2016 Remote Code Execution Vulnerability (KB4493198)
2021-04-14 00:00:00
Microsoft Word 2010 Remote Code Execution Vulnerability (KB4493218)
2021-04-14 00:00:00
Microsoft Word 2013 Remote Code Execution Vulnerability (KB4493208)
2021-04-14 00:00:00
mskb
mskb
nessus
nessus
Security Updates for Microsoft Word Products (April 2021)
2021-04-13 00:00:00
Security Updates for Microsoft Word Products C2R (April 2021)
2022-06-10 00:00:00
Security Updates for Microsoft Sharepoint 2010 (April 2021)
2021-04-16 00:00:00
mscve
mscve
Microsoft Word Remote Code Execution Vulnerability
2021-04-13 07:00:00
nvd
nvd
CVE-2021-28453
2021-04-13 20:15:20
cve
cve
CVE-2021-28453
2021-04-13 20:15:20
prion
prion
Remote code execution
2021-04-13 20:15:00
cvelist
cvelist
CVE-2021-28453 Microsoft Word Remote Code Execution Vulnerability
2021-04-13 19:33:35
kaspersky
kaspersky
KLA12138 Multiple vulnerabilities in Microsoft Office
2021-04-13 00:00:00
krebs
krebs
Microsoft Patch Tuesday, April 2021 Edition
2021-04-13 23:12:19
threatpost
threatpost
Microsoft Has Busy April Patch Tuesday with Zero-Days, Exchange Fixes
2021-04-14 12:46:33
rapid7blog
rapid7blog
Patch Tuesday - April 2021
2021-04-13 17:37:00