Home

CVE-2017-8725

Description

A remote code execution vulnerability exists in Microsoft Publisher 2007 Service Pack 3 and Microsoft Publisher 2010 Service Pack 2 when they fail to properly handle objects in memory, aka Microsoft Office Publisher Remote Code Execution.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
32.412

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Publisher Remote Code Execution Vulnerability for Microsoft Publisher 2010 (KB3141537) 32-Bit EditionWindows
Microsoft Publisher Remote Code Execution Vulnerability for Microsoft Publisher 2010 (KB3141537) 64-Bit EditionWindows
Microsoft Publisher Remote Code Execution Vulnerability for Microsoft Office Publisher 2007 (KB3114428)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-23163Security Update for Microsoft Publisher 2010 (KB3141537) 32-Bit Edition
PATCH-23164Security Update for Microsoft Publisher 2010 (KB3141537) 64-Bit Edition
PATCH-23171Security Update for Microsoft Office Publisher 2007 (KB3114428)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234