Home

CVE-2017-8501

Description

Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka Microsoft Office Memory Corruption Vulnerability. This CVE ID is unique from CVE-2017-8502.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
31.287

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Office Memory Corruption Vulnerability for Microsoft SharePoint Server 2010 (KB3191902)Windows
Microsoft Office Memory Corruption Vulnerability for Microsoft Office Compatibility Pack Service Pack 3 (KB3191897)Windows
Microsoft Office Memory Corruption Vulnerability for Microsoft Excel 2010 (KB3191907) 64-Bit Edition x64 bases systemsWindows
Microsoft Office Memory Corruption Vulnerability for Microsoft Excel 2010 (KB3191907) 64-Bit Edition x86 based systemsWindows
Microsoft Office Memory Corruption Vulnerability for Microsoft Excel 2016 (KB3203477) 64-Bit EditionWindows
Microsoft Office Memory Corruption Vulnerability for Microsoft Excel 2016 (KB3203477) 32-Bit EditionWindows
Microsoft Office Memory Corruption Vulnerability for Microsoft Office Excel Viewer 2007 (KB3191833)Windows
Microsoft Office Memory Corruption Vulnerability for Microsoft Excel 2013 (KB3213537) 64-Bit EditionWindows
Microsoft Office Memory Corruption Vulnerability for Microsoft Excel 2013 (KB3213537) 32-Bit EditionWindows
Microsoft Office Memory Corruption Vulnerability for Microsoft Office Excel 2007 (KB3191894)Windows
Microsoft Office Memory Corruption Vulnerability for Microsoft SharePoint Enterprise Server 2013 (KB3213559)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-22802Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3191897)
PATCH-22804Security Update for Microsoft Excel 2010 (KB3191907) 64-Bit Edition
PATCH-22803Security Update for Microsoft Excel 2010 (KB3191907) 32-Bit Edition
PATCH-22825Security Update for Microsoft Excel 2016 (KB3203477) 64-Bit Edition
PATCH-22822Security Update for Microsoft Excel 2016 (KB3203477) 32-Bit Edition
PATCH-22805Security Update for Microsoft Office Excel Viewer 2007 (KB3191833)
PATCH-22806Security Update for Microsoft Excel 2013 (KB3213537) 64-Bit Edition
PATCH-22807Security Update for Microsoft Excel 2013 (KB3213537) 32-Bit Edition
PATCH-22809Security Update for Microsoft Office Excel 2007 (KB3191894)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234