Use-After-Free Vulnerability in Microsoft Office Suite Affecting Multiple Versions
CVE-2015-0085

Currently unrated

Key Information:

Vendor: Microsoft
Status: Word; Office; Sharepoint Foundation; Powerpoint
Vendor: CVE Published:; 11 March 2015

Summary

A use-after-free vulnerability exists in multiple versions of Microsoft Office, impacting applications such as Excel, Word, and PowerPoint. This flaw allows remote attackers to potentially execute arbitrary code by crafting malicious Office documents, leading to unauthorized access and control over affected systems. Affected users should apply security updates to mitigate the risks associated with this vulnerability, ensuring their software is secure against exploitation.

References

http://www.securitytracker.com/id/1031896

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

34% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 11, 2015
Vulnerability Reserved
Nov 18, 2014