First published: Wed Jan 10 2018(Updated: )
Microsoft Excel in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability".
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Excel | =2007-sp3 | |
Microsoft Excel | =2010-sp2 | |
Microsoft Excel | =2013-sp1 | |
Microsoft Excel | =2013-sp1 | |
Microsoft Excel | =2016 | |
Microsoft Excel Viewer | ||
Microsoft Office | =2016 | |
Microsoft Office Compatibility Pack | =sp3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-0796 is a remote code execution vulnerability in Microsoft Excel.
Microsoft Excel 2007, 2010, 2013, and 2016 are affected by CVE-2018-0796.
CVE-2018-0796 has a severity rating of 8.8 (Critical).
CVE-2018-0796 exploits the vulnerability by manipulating objects in memory, leading to remote code execution.
Yes, Microsoft has released security updates to address the CVE-2018-0796 vulnerability. It is recommended to install the latest updates for Microsoft Excel.