CVE-2015-1649
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD
Description
Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps Server 2010 SP2 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Component Use After Free Vulnerability."
Affected (11)
Products: Microsoft: Office, Office Compatibility Pack, Office Web Apps, Sharepoint Server, Word, Word Viewer
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 2010 sp2 | |
| All versions | |
| Version 2010 sp2 | |
| Version 2010 sp2 | |
| Version 2007 sp3 | |
| All versions |
References (4)
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.