vulnerability

CVE-2018-8432: Microsoft Graphics Components Remote Code Execution Vulnerability [Office for Mac]

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Oct 9, 2018	Oct 19, 2018	Aug 13, 2019

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Oct 9, 2018

Added

Oct 19, 2018

Modified

Aug 13, 2019

Description

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.
To exploit the vulnerability, a user would have to open a specially crafted file.
The security update addresses the vulnerability by correcting how Microsoft Graphics Components handle objects in memory.

Solutions

office-for-mac-upgrade-16_16_3office-for-mac-upgrade-16_18_0

References

BID-105458
CVE-2018-8432
https://attackerkb.com/topics/CVE-2018-8432
URL-https://docs.microsoft.com/en-us/officeupdates/release-notes-office-for-mac#october-2018-release
URL-https://support.office.com/en-us/article/Release-notes-for-Office-2016-for-Mac-ed2da564-6d53-4542-9954-7e3209681a41

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today