1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Microsoft Office CVE-2018-0802

Attack: Microsoft Office CVE-2018-0802

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions.

Additional Information

Microsoft Office is a suite of interrelated desktop applications for Microsoft Windows and Mac OS.

Microsoft Office is prone to a memory-corruption vulnerability. Specifically, this issue occurs because the application fails to properly handle objects in memory. An attacker can exploit this issue by enticing an unsuspecting user to open a specially crafted file.

An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions.

Affected

  • Multiple version of Microsoft Office
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube