CVE-2015-1642

Description

Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted document, aka Microsoft Office Memory Corruption Vulnerability.

Risk Information

Base Score

7.8

MODERATE

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

72.879

Associated Vulnerability

Vulnerability	OS Platform
Security Update for Microsoft Office 2007 suites (KB2687409)	Windows
Security Update for Microsoft Office 2007 suites (KB3054888)	Windows
Security Update for Microsoft Office 2007 suites (KB2596650)	Windows
Security Update for Microsoft Office 2007 suites (KB2837610)	Windows
Security Update for Microsoft Office Excel 2007 (KB3054992)	Windows
Security Update for Microsoft Office PowerPoint 2007 (KB3055051)	Windows
Security Update for Microsoft Office Visio 2007 suites (KB2965280)	Windows
Security Update for Microsoft Office Word 2007 (KB3055052)	Windows
Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition	Windows
Security Update for Microsoft Office 2010 (KB2965310) 64-Bit Edition	Windows
Security Update for Microsoft Office 2010 (KB3055037) 32-Bit Edition	Windows
Security Update for Microsoft Office 2010 (KB3055037) 64-Bit Edition	Windows
Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition	Windows
Security Update for Microsoft Office 2010 (KB2553313) 64-Bit Edition	Windows
Security Update for Microsoft Office 2010 (KB2598244) 32-Bit Edition	Windows
Security Update for Microsoft Office 2010 (KB2598244) 64-Bit Edition	Windows
Security Update for Microsoft Excel 2010 (KB3055044) 32-Bit Edition	Windows
Security Update for Microsoft Excel 2010 (KB3055044) 64-Bit Edition	Windows
Security Update for Microsoft PowerPoint 2010 (KB3055033) 32-Bit Edition	Windows
Security Update for Microsoft PowerPoint 2010 (KB3055033) 64-Bit Edition	Windows
Security Update for Microsoft Visio 2010 (KB3054876) 32-Bit Edition	Windows
Security Update for Microsoft Visio 2010 (KB3054876) 64-Bit Edition	Windows
Security Update for Microsoft Word 2010 (KB3055039) 32-Bit Edition	Windows
Security Update for Microsoft Word 2010 (KB3055039) 64-Bit Edition	Windows
Security Update for Microsoft Office 2013 (KB3039734) 32-Bit Edition	Windows
Security Update for Microsoft Office 2013 (KB3039734) 64-Bit Edition	Windows
Security Update for Microsoft Office 2013 (KB3039798) 32-Bit Edition	Windows
Security Update for Microsoft Office 2013 (KB3039798) 64-Bit Edition	Windows
Security Update for Microsoft Office 2013 (KB3054816) 32-Bit Edition	Windows
Security Update for Microsoft Office 2013 (KB3054816) 64-Bit Edition	Windows
Security Update for Microsoft Excel 2013 (KB3054991) 32-Bit Edition	Windows
Security Update for Microsoft Excel 2013 (KB3054991) 64-Bit Edition	Windows
Security Update for Microsoft PowerPoint 2013 (KB3055029) 32-Bit Edition	Windows
Security Update for Microsoft PowerPoint 2013 (KB3055029) 64-Bit Edition	Windows
Security Update for Microsoft Visio 2013 (KB3054929) 32-Bit Edition	Windows
Security Update for Microsoft Visio 2013 (KB3054929) 64-Bit Edition	Windows
Security Update for Microsoft Word 2013 (KB3055030) 32-Bit Edition	Windows
Security Update for Microsoft Word 2013 (KB3055030) 64-Bit Edition	Windows
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2986254)	Windows
Security Update for Word Viewer (KB3055053)	Windows
Security Update for Word Viewer (KB3055054)	Windows
Security Update for Microsoft Web Applications (KB3054974)	Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE

Patch ID	Patch Description
PATCH-18504	Security Update for Microsoft Office 2007 suites (KB2687409)
PATCH-18508	Security Update for Microsoft Office Excel 2007 (KB3054992)
PATCH-18509	Security Update for Microsoft Office PowerPoint 2007 (KB3055051)
PATCH-18510	Security Update for Microsoft Office Visio 2007 suites (KB2965280)
PATCH-18511	Security Update for Microsoft Office Word 2007 (KB3055052)
PATCH-18512	Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition
PATCH-18513	Security Update for Microsoft Office 2010 (KB2965310) 64-Bit Edition
PATCH-18514	Security Update for Microsoft Office 2010 (KB3055037) 32-Bit Edition
PATCH-18515	Security Update for Microsoft Office 2010 (KB3055037) 64-Bit Edition
PATCH-18516	Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition
PATCH-18517	Security Update for Microsoft Office 2010 (KB2553313) 64-Bit Edition
PATCH-18520	Security Update for Microsoft Excel 2010 (KB3055044) 32-Bit Edition
PATCH-18521	Security Update for Microsoft Excel 2010 (KB3055044) 64-Bit Edition
PATCH-18522	Security Update for Microsoft PowerPoint 2010 (KB3055033) 32-Bit Edition
PATCH-18526	Security Update for Microsoft Word 2010 (KB3055039) 32-Bit Edition
PATCH-18528	Security Update for Microsoft Office 2013 (KB3039734) 32-Bit Edition
PATCH-18529	Security Update for Microsoft Office 2013 (KB3039734) 64-Bit Edition
PATCH-18530	Security Update for Microsoft Office 2013 (KB3039798) 32-Bit Edition
PATCH-18532	Security Update for Microsoft Office 2013 (KB3054816) 32-Bit Edition
PATCH-18533	Security Update for Microsoft Office 2013 (KB3054816) 64-Bit Edition
PATCH-18534	Security Update for Microsoft Excel 2013 (KB3054991) 32-Bit Edition
PATCH-18535	Security Update for Microsoft Excel 2013 (KB3054991) 64-Bit Edition
PATCH-18536	Security Update for Microsoft PowerPoint 2013 (KB3055029) 32-Bit Edition
PATCH-18537	Security Update for Microsoft PowerPoint 2013 (KB3055029) 64-Bit Edition
PATCH-18538	Security Update for Microsoft Visio 2013 (KB3054929) 32-Bit Edition
PATCH-18539	Security Update for Microsoft Visio 2013 (KB3054929) 64-Bit Edition
PATCH-18540	Security Update for Microsoft Word 2013 (KB3055030) 32-Bit Edition
PATCH-18541	Security Update for Microsoft Word 2013 (KB3055030) 64-Bit Edition
PATCH-18545	Security Update for Microsoft Web Applications (KB3054974)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234