QwikSec

Security Database

CVE

CWE

Training

CVE-2018-0798

Published: Jan 10, 2018

Modified: Oct 21, 2025

PUBLISHED

Description

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability".

Vendor	Product	Versions
Microsoft Corporation	Equation Editor	affected `Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016`

References

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_SECTRACK

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0798

x_refsource_CONFIRM

https://0patch.blogspot.com/2018/01/bringing-abandoned-equation-editor-back.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.