CVE-2017-8487

Published: Jun 15, 2017Modified: May 13, 2026

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Windows OLE in Windows XP and Windows Server 2003 allows an attacker to execute code when a victim opens a specially crafted file or program aka "Windows olecnv32.dll Remote Code Execution Vulnerability."

Affected (2)

Products: Microsoft: Windows Server 2003, Windows Xp

Microsoft

2 products

Windows Server 2003

Windows Xp

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows Server 2003	All versions
Microsoft Windows Xp	All versions

References (8)

http://www.securityfocus.com/bid/99013

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1038702

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

https://support.microsoft.com/en-us/help/4025218/security-update-for-windows-xp-and-windows-server-2003

Source: secure@microsoft.com

PatchVendor Advisory

https://www.exploit-db.com/exploits/42211/

Source: secure@microsoft.com

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/99013

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1038702

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://support.microsoft.com/en-us/help/4025218/security-update-for-windows-xp-and-windows-server-2003

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://www.exploit-db.com/exploits/42211/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.