New Search

PowerPoint Remote Code Execution Vulnerability - CVE-2017-8742

oval:org.cisecurity:def:3228

A remote code execution vulnerability exists in Microsoft PowerPoint 2007 Service Pack 3 Microsoft PowerPoint 2010 Service Pack 2 Microsoft PowerPoint 2013 Service Pack 1 Microsoft PowerPoint 2013 RT Service Pack 1 Microsoft PowerPoint 2016 Microsoft PowerPoint Viewer 2007 Microsoft SharePoint Server 2013 Service Pack 1 Microsoft SharePoint Enterprise Server 2016 Microsoft Office Web Apps 2010 Service Pack 2 and Microsoft Office Compatibility Pack Service Pack 3 when they fail to properly handle objects in memory aka "PowerPoint Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8743.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 7
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows 10
  • Microsoft Windows Server 2016
Class:
vulnerability
Reference(s):
  • CVE-2017-8742
Product(s):
  • Microsoft PowerPoint 2007
  • Microsoft PowerPoint 2013
  • Microsoft SharePoint Server 2013
  • PowerPoint Viewer 2010
  • Microsoft Office Web Apps 2010
  • Microsoft PowerPoint 2016
  • Microsoft Office Compatibility Pack
  • Microsoft SharePoint Server 2016
  • Microsoft PowerPoint 2010
  • Microsoft Office Web Apps Server 2013