Microsoft Word Memory Corruption Vulnerability Affects Multiple Versions
CVE-2015-0086

Currently unrated

Key Information:

Vendor: Microsoft
Status: Word; Office; Office Web Apps Server; Sharepoint Server
Vendor: CVE Published:; 11 March 2015

What is CVE-2015-0086?

This vulnerability in Microsoft Word and related products allows attackers to execute arbitrary code or trigger denial of service by exploiting a crafted Rich Text Format (RTF) document. By leveraging this flaw, an attacker can manipulate memory allocation processes, leading to potential security breaches. Affected users should apply the necessary security updates to mitigate risks effectively.

References

http://www.securitytracker.com/id/1031896

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

27% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 11, 2015
Vulnerability Reserved
Nov 18, 2014