CVE-2017-11882

Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1 va Microsoft Office 2016 tajovuzkorga xotiradagi ob'ektlarni to'g'ri ishlata olmagan holda joriy foydalanuvchi kontekstida o'zboshimchalik kodini ishga tushirishga imkon beradi, ya'ni "Microsoft Office Memory Corruption Vulnerability". Bu CVE identifikatori CVE-2017-11884 dan noyobdir.

CVSS Vector

Manbalar

• http://reversingminds-blog.logdown.com/posts/3907313-fileless-attack-in-word-without-macros-cve-2017-11882
• http://www.securityfocus.com/bid/101757
• http://www.securitytracker.com/id/1039783
• https://0patch.blogspot.com/2017/11/did-microsoft-just-manually-patch-their.html
• https://0patch.blogspot.com/2017/11/official-patch-for-cve-2017-11882-meets.html