QwikSec

Security Database

CVE

CWE

Training

CVE-2017-0020

Published: Mar 17, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Microsoft Excel 2016, Excel 2010 SP2, Excel 2013 RT SP1, and Office Web Apps Server 2013 SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." This vulnerability is different from those described in CVE-2017-0006, CVE-2017-0019, CVE-2017-0030, CVE-2017-0031, CVE-2017-0052, and CVE-2017-0053.

Vendor	Product	Versions
Microsoft Corporation	Office	affected `Excel 2016, Excel 2010 SP2, Excel 2013 RT SP1, and Office Web Apps Server 2013 SP1`

References

vdb-entry

x_refsource_SECTRACK

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0020

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.