QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-0950

Back to search

CVE-2018-0950

Published: Apr 12, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

An information disclosure vulnerability exists when Office renders Rich Text Format (RTF) email messages containing OLE objects when a message is opened or previewed, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Word, Microsoft Office. This CVE ID is unique from CVE-2018-1007.

VendorProductVersions

Microsoft

Microsoft Word

affected
2007 Service Pack 3
affected
2010 Service Pack 2 (32-bit editions)
affected
2010 Service Pack 2 (64-bit editions)
affected
2013 RT Service Pack 1
affected
2013 Service Pack 1 (32-bit editions)

+3 more versions

Microsoft

Microsoft Office

affected
2010 Service Pack 2 (32-bit editions)
affected
2010 Service Pack 2 (64-bit editions)
affected
2016 Click-to-Run (C2R) for 32-bit editions
affected
2016 Click-to-Run (C2R) for 64-bit editions
affected
Compatibility Pack Service Pack 3

References

103642
vdb-entry
x_refsource_BID
1040654
vdb-entry
x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now