New Search

Microsoft Office Memory Corruption Vulnerability – CVE-2017-8631

oval:org.cisecurity:def:3234

A remote code execution vulnerability exists in Excel Services Microsoft Excel 2007 Service Pack 3 Microsoft Excel 2010 Service Pack 2 Microsoft Excel 2013 Service Pack 1 Microsoft Excel 2013 RT Service Pack 1 Microsoft Excel 2016 Microsoft Office Web Apps 2013 Microsoft Office Compatibility Pack Service Pack 3 Microsoft Excel Web App 2013 Service Pack 1 Microsoft Excel Viewer 2007 Service Pack 3 and Office Online Server when they fail to properly handle objects in memory aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8630 CVE-2017-8632 and CVE-2017-8744.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 7
  • Microsoft Windows 8
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows 8.1
  • Microsoft Windows 10
  • Microsoft Windows Server 2016
Class:
vulnerability
Reference(s):
  • CVE-2017-8631
Product(s):
  • Microsoft Excel 2010
  • Microsoft Excel 2016
  • Microsoft Office Web Apps Server
  • Microsoft Sharepoint Server 2010
  • Microsoft Excel 2007
  • Microsoft Sharepoint Server 2007
  • Microsoft Office Compatibility Pack
  • Microsoft Excel Web App
  • Microsoft Excel 2013
  • Microsoft Excel Viewer