First published: Wed Nov 14 2018(Updated: )
A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Office 365 Proplus | ||
Microsoft Project | =2010-sp2 | |
Microsoft Project | =2013-sp1 | |
Microsoft Project | =2016 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-8575 is a remote code execution vulnerability that exists in Microsoft Project software when it fails to properly handle objects in memory.
CVE-2018-8575 affects Microsoft Project, Office 365 ProPlus, and Microsoft Project Server.
The severity of CVE-2018-8575 is rated as critical with a CVSS score of 7.8.
To fix CVE-2018-8575, it is recommended to apply the latest security updates provided by Microsoft.
You can find more information about CVE-2018-8575 on the following websites: - [SecurityFocus](http://www.securityfocus.com/bid/105807) - [SecurityTracker](http://www.securitytracker.com/id/1042116) - [Microsoft Security Guidance Advisory for CVE-2018-8575](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575)