SB2018041024 - Multiple vulnerabilities in Microsoft Office
Published: April 10, 2018
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 9 secuirty vulnerabilities.
1) Buffer overflow (CVE-ID: CVE-2018-1028)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing fonts in Microsoft Office graphics component. A remote unauthenticated attacker can create a specially crafted Office document, trick the victim into opening it and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
2) Buffer overflow (CVE-ID: CVE-2018-1030)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing Microsoft Office documents. A remote unauthenticated attacker can create a specially crafted office document, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
3) Out-of-bounds read (CVE-ID: CVE-2018-1007)
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The vulnerability exists due to a boundary error when processing Microsoft Office documents. A remote attacker can trick the victim into opening a specially crafted Office document, trigger out-of-bounds read and gain access to potentially sensitive information.
4) Buffer overflow (CVE-ID: CVE-2018-1026)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing Microsoft Office documents. A remote unauthenticated attacker can create a specially crafted Office document, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
5) Information disclosure (CVE-ID: CVE-2018-0950)
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The vulnerability exists due to the way Microsoft Office renders Rich Text Format (RTF) email messages containing OLE objects when a message is opened or previewed. A remote attacker can create a specially crafted email message in RTF format, initiate connection to a remote SMB server via a specially crafted OLE object and gain access to sensitive information, such as user credentials.
6) Buffer overflow (CVE-ID: CVE-2018-0920)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing Microsoft Excel. A remote unauthenticated attacker can create a specially crafted .xls file, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
7) Buffer overflow (CVE-ID: CVE-2018-1011)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing Microsoft Excel. A remote unauthenticated attacker can create a specially crafted .xls file, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
8) Buffer overflow (CVE-ID: CVE-2018-1027)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing Microsoft Excel. A remote unauthenticated attacker can create a specially crafted .xls file, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
9) Buffer overflow (CVE-ID: CVE-2018-1029)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing Microsoft Excel. A remote unauthenticated attacker can create a specially crafted .xls file, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Remediation
Install update from vendor's website.
References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1028
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1030
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1007
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1026
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0950
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0920
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1011
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1027
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1029