First published: Wed Oct 10 2018(Updated: )
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft Excel Viewer, Microsoft PowerPoint Viewer, Windows Server 2019, Windows Server 2008 R2, Windows 10, Windows Server 2008.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Excel Viewer | =2007-sp3 | |
Microsoft Office | =2016 | |
Microsoft Office | =2019 | |
Microsoft Office 365 Proplus | ||
Microsoft Office Compatibility Pack | =sp3 | |
Microsoft PowerPoint Viewer | =2007 | |
Microsoft Word Viewer | ||
Microsoft Windows 10 | =1809 | |
Microsoft Windows 7 | =sp1 | |
Microsoft Windows Server 2008 | =sp2 | |
Microsoft Windows Server 2008 | =r2-sp1 | |
Microsoft Windows Server 2019 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-8432 is a remote code execution vulnerability in Microsoft Graphics Components.
Windows 7, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft Excel Viewer, Microsoft Office Compatibility Pack, Microsoft PowerPoint Viewer, and Microsoft Word Viewer are affected by CVE-2018-8432.
CVE-2018-8432 has a severity rating of 7.8, which is considered critical.
Windows 10 is impacted by CVE-2018-8432 if it is running version 1809.
To protect yourself from CVE-2018-8432, make sure you install the necessary security updates provided by Microsoft.