CVE-2020-0760

Published: Apr 15, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991.

Vendor	Product	Versions
Microsoft	Microsoft Project	affected `2013 Service Pack 1 (32-bit editions)` affected `2013 Service Pack 1 (64-bit editions)` affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2010 Service Pack 2 (32-bit editions)` +1 more versions
Microsoft	Microsoft Office	affected `2019 for 32-bit editions` affected `2019 for 64-bit editions` affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2010 Service Pack 2 (32-bit editions)` +4 more versions
Microsoft	Office 365 ProPlus	affected `32-bit Systems` affected `64-bit Systems`
Microsoft	Microsoft Excel	affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2010 Service Pack 2 (32-bit editions)` affected `2010 Service Pack 2 (64-bit editions)` affected `2013 RT Service Pack 1` +2 more versions
Microsoft	Microsoft PowerPoint	affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2010 Service Pack 2 (32-bit editions)` affected `2010 Service Pack 2 (64-bit editions)` affected `2013 RT Service Pack 1` +2 more versions
Microsoft	Microsoft Visio	affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2010 Service Pack 2 (32-bit editions)` affected `2010 Service Pack 2 (64-bit editions)` affected `2013 Service Pack 1 (64-bit editions)` +1 more versions
Microsoft	Microsoft Word	affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2010 Service Pack 2 (32-bit editions)` affected `2010 Service Pack 2 (64-bit editions)` affected `2013 RT Service Pack 1` +2 more versions
Microsoft	Microsoft Publisher 2016 (32-bit edition)	affected `unspecified`
Microsoft	Microsoft Publisher 2016 (64-bit edition)	affected `unspecified`
Microsoft	Microsoft Access	affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2013 Service Pack 1 (64-bit editions)` affected `2013 Service Pack 1 (32-bit editions)` affected `2010 Service Pack 2 (32-bit editions)` +1 more versions
Microsoft	Microsoft Outlook	affected `2016 (32-bit edition)` affected `2016 (64-bit edition)` affected `2013 Service Pack 1 (32-bit editions)` affected `2013 Service Pack 1 (64-bit editions)` affected `2013 RT Service Pack 1` +2 more versions
Microsoft	Microsoft Publisher 2013 Service Pack 1 (32-bit editions)	affected `unspecified`
Microsoft	Microsoft Publisher 2013 Service Pack 1 (64-bit editions)	affected `unspecified`
Microsoft	Microsoft Publisher	affected `2010 Service Pack 2 (64-bit editions)` affected `2010 Service Pack 2 (32-bit editions)`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0760

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-0760

Description

Affected Products

References