CVE-2017-11826: Microsoft Office Remote Code Execution Vulnerability
First published: Fri Oct 13 2017(Updated: )
Microsoft Office 2010, SharePoint Enterprise Server 2010, SharePoint Server 2010, Web Applications, Office Web Apps Server 2010 and 2013, Word Viewer, Word 2007, 2010, 2013 and 2016, Word Automation Services, and Office Online Server allow remote code execution when the software fails to properly handle objects in memory.
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | ||
| Microsoft Office | =2010 | |
| Microsoft Office Online Server | ||
| Microsoft Office Web Apps | ||
| Microsoft Office Web Apps | =2010 | |
| Microsoft Office Web Apps | =2013 | |
| Microsoft SharePoint Enterprise Server 2016 | =2010 | |
| Microsoft SharePoint Server 2010 | =2010 | |
| Microsoft Web Applications | ||
| Microsoft Office Word | =2007 | |
| Microsoft Office Word | =2010 | |
| Microsoft Office Word | =2013 | |
| Microsoft Office Word | =2016 | |
| Microsoft Office Word Viewer | ||
| Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint | =sp3 | |
| Microsoft Office Online Server | =2016 | |
| Microsoft Office Web Apps Server 2013 | =2010-sp2 | |
| Microsoft Office Web Apps Server 2013 | =2013-sp1 | |
| Microsoft Word Viewer | ||
| Microsoft SharePoint Enterprise Server 2016 | =2016 | |
| Microsoft SharePoint Server 2010 | =2010-sp2 | |
| Microsoft SharePoint Server 2010 | =2013-sp1 | |
| Microsoft Office Word | =2007-sp3 | |
| Microsoft Office Word | =2010-sp2 | |
| Microsoft Office Word | =2013-sp1 | |
| Microsoft Office Word | =2013-sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/101219
- http://www.securitytracker.com/id/1039541
- https://0patch.blogspot.com/2017/11/0patching-pretty-nasty-microsoft-word.html
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11826
- https://securingtomorrow.mcafee.com/mcafee-labs/analyzing-microsoft-office-zero-day-exploit-cve-2017-11826-memory-corruption-vulnerability/
- https://www.tarlogic.com/en/blog/exploiting-word-cve-2017-11826/
- https://nvd.nist.gov/vuln/detail/CVE-2017-11826
Frequently Asked Questions
What is the severity of CVE-2017-11826?
CVE-2017-11826 is rated as critical due to its potential for remote code execution.
How do I fix CVE-2017-11826?
To fix CVE-2017-11826, it's essential to apply the latest security patches provided by Microsoft for the affected software versions.
What products are affected by CVE-2017-11826?
CVE-2017-11826 affects various Microsoft products including Office 2010, Word 2007 through 2016, SharePoint Enterprise Server and Office Web Apps Servers.
Can CVE-2017-11826 be exploited remotely?
Yes, CVE-2017-11826 can be exploited remotely, allowing attackers to execute arbitrary code on affected systems.
What are the risks of not addressing CVE-2017-11826?
Failing to address CVE-2017-11826 could lead to unauthorized access, data breaches, or complete system compromise.
- agent/type
- agent/description
- agent/title
- agent/remedy
- agent/weakness
- agent/author
- agent/severity
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/first-publish-date
- agent/tags
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- collector/nvd-api
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2010
- canonical/microsoft office online server
- canonical/microsoft office web apps
- version/microsoft office web apps/2010
- version/microsoft office web apps/2013
- canonical/microsoft sharepoint enterprise server 2016
- version/microsoft sharepoint enterprise server 2016/2010
- canonical/microsoft sharepoint server 2010
- version/microsoft sharepoint server 2010/2010
- canonical/microsoft web applications
- canonical/microsoft office word
- version/microsoft office word/2007
- version/microsoft office word/2010
- version/microsoft office word/2013
- version/microsoft office word/2016
- canonical/microsoft office word viewer
- canonical/microsoft office compatibility pack for word, excel, and powerpoint
- version/microsoft office compatibility pack for word, excel, and powerpoint/sp3
- version/microsoft office online server/2016
- canonical/microsoft office web apps server 2013
- version/microsoft office web apps server 2013/2010-sp2
- version/microsoft office web apps server 2013/2013-sp1
- canonical/microsoft word viewer
- version/microsoft sharepoint enterprise server 2016/2016
- version/microsoft sharepoint server 2010/2010-sp2
- version/microsoft sharepoint server 2010/2013-sp1
- version/microsoft office word/2007-sp3
- version/microsoft office word/2010-sp2
- version/microsoft office word/2013-sp1