CVE-2015-1639: XSS
First published: Tue Apr 14 2015(Updated: )
Cross-site scripting (XSS) vulnerability in Microsoft Office for Mac 2011 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Microsoft Outlook App for Mac XSS Vulnerability."
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2011 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-1639?
CVE-2015-1639 has been rated as having a moderate severity due to its potential for cross-site scripting exploits.
How do I fix CVE-2015-1639?
To mitigate CVE-2015-1639, it is recommended to install the latest security updates provided by Microsoft for Office for Mac 2011.
Which versions of Microsoft Office are affected by CVE-2015-1639?
CVE-2015-1639 affects Microsoft Office for Mac 2011 specifically.
What type of attacks can occur due to CVE-2015-1639?
CVE-2015-1639 allows remote attackers to execute arbitrary web scripts or HTML, leading to potential data theft or site impersonation.
Is CVE-2015-1639 present in newer versions of Microsoft Office?
CVE-2015-1639 is specifically a vulnerability in Microsoft Office for Mac 2011 and does not affect newer versions.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/weakness
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2011