CVE-2019-0541
Published: Jan 8, 2019
Modified: Oct 21, 2025
Description
A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer, Internet Explorer 10, Office 365 ProPlus.
| Vendor | Product | Versions |
|---|---|---|
Microsoft | Microsoft Office | affected 2010 Service Pack 2 (32-bit editions)affected 2010 Service Pack 2 (64-bit editions)affected 2013 RT Service Pack 1affected 2013 Service Pack 1 (32-bit editions)affected 2013 Service Pack 1 (64-bit editions)+4 more versions |
Microsoft | Microsoft Office Word Viewer | affected Microsoft Office Word Viewer |
Microsoft | Internet Explorer 9 | affected Windows Server 2008 for 32-bit Systems Service Pack 2affected Windows Server 2008 for x64-based Systems Service Pack 2 |
Microsoft | Internet Explorer 11 | affected Windows 10 for 32-bit Systemsaffected Windows 10 for x64-based Systemsaffected Windows 10 Version 1607 for 32-bit Systemsaffected Windows 10 Version 1607 for x64-based Systemsaffected Windows 10 Version 1703 for 32-bit Systems+19 more versions |
Microsoft | Microsoft Excel Viewer | affected 2007 Service Pack 3 |
Microsoft | Internet Explorer 10 | affected Windows Server 2012 |
Microsoft | Office | affected 365 ProPlus for 32-bit Systemsaffected 365 ProPlus for 64-bit Systems |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now