9.3

CVE-2017-0199

Warnung
Exploit
Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftOffice Version2007 Updatesp3
MicrosoftOffice Version2010 Updatesp2
MicrosoftOffice Version2013 Updatesp1
MicrosoftOffice Version2016 Update-
MicrosoftWindows 7 Version- Updatesp1
MicrosoftWindows Server 2008 Version- Updatesp2
MicrosoftWindows Server 2008 Versionr2 Updatesp1
MicrosoftWindows Vista Version- Updatesp2
PhilipsIntellispace Portal Version7.0
PhilipsIntellispace Portal Version8.0

03.11.2021: CISA Known Exploited Vulnerabilities (KEV) Catalog

Microsoft Office and WordPad Remote Code Execution Vulnerability

Schwachstelle

Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially crafted files. Successful exploitation allows for remote code execution.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 99.93% 1
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
Third Party Advisory
US Government Resource
http://rewtin.blogspot.nl/2017/04/cve-2017-0199-practical-exploitation-poc.html
Third Party Advisory
Exploit
http://www.securityfocus.com/bid/97498
Third Party Advisory
Broken Link
VDB Entry
http://www.securitytracker.com/id/1038224
Third Party Advisory
Broken Link
VDB Entry
https://blog.nviso.be/2017/04/12/analysis-of-a-cve-2017-0199-malicious-rtf-document/
Third Party Advisory
Exploit
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0199
Patch
Vendor Advisory
https://www.exploit-db.com/exploits/41894/
Third Party Advisory
Exploit
VDB Entry
https://www.exploit-db.com/exploits/41934/
Third Party Advisory
Exploit
VDB Entry
https://www.exploit-db.com/exploits/42995/
Third Party Advisory
VDB Entry
https://www.fireeye.com/blog/threat-research/2017/04/cve-2017-0199_useda.html
Third Party Advisory
Exploit
Broken Link
https://www.mdsec.co.uk/2017/04/exploiting-cve-2017-0199-hta-handler-vulnerability/
Third Party Advisory
Exploit
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-0199
US Government Resource