Home

CVE-2017-0243

Description

Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka Microsoft Office Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2017-8570.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
34.044

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office 2010 (KB3203468) 64-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office 2010 (KB3203468) 32-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Web Applications (KB3203469)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office 2010 (KB3203468) 64-Bit Edition Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office 2007 suites (KB2880514)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-22824Security Update for Microsoft Office 2010 (KB3203468) 64-Bit Edition
PATCH-22827Security Update for Microsoft Office 2010 (KB3203468) 32-Bit Edition
PATCH-22846Security Update for Microsoft Web Applications (KB3203469)
PATCH-22826Security Update for Microsoft Office 2007 suites (KB2880514)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234