CVE-2017-8632: Buffer Overflow
First published: Wed Sep 13 2017(Updated: )
A remote code execution vulnerability exists in Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Excel for Mac 2011, Microsoft Excel 2016 for Mac, and Microsoft Office Compatibility Pack Service Pack 3, when they fail to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8630, CVE-2017-8631, and CVE-2017-8744.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Excel | =2010-sp2 | |
| Microsoft Excel | =2013-sp1 | |
| Microsoft Excel | =2013-sp1 | |
| Microsoft Excel | =2016 | |
| Microsoft Excel for Mac | =2011 | |
| Microsoft Excel for Mac | =2016 | |
| Microsoft Office Compatibility Pack | =sp3 | |
| Microsoft Office Web Apps | =2013 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/remedy
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft excel
- version/microsoft excel/2010-sp2
- version/microsoft excel/2013-sp1
- version/microsoft excel/2016
- canonical/microsoft excel for mac
- version/microsoft excel for mac/2011
- version/microsoft excel for mac/2016
- canonical/microsoft office compatibility pack
- version/microsoft office compatibility pack/sp3
- canonical/microsoft office web apps
- version/microsoft office web apps/2013