Use-after-free vulnerability in Microsoft Office component - CVE-2015-1649| ID: oval:org.secpod.oval:def:24104 | Date: (C)2015-04-15 (M)2021-12-10 |
| Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Word 2007, 2010, Word Viewer, Office Compatibility Pack 2007, Sharepoint Server 2010 or Office Web Apps 2010 and is prone to an use after free vulnerability. A flaw is present in the applications, which fail to handle crafted office files. Successful exploitation could allow attackers to execute arbitrary code.
| Platform: |
| Microsoft Windows 7 |
| Microsoft Windows Server 2003 |
| Microsoft Windows 10 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Server 2008 R2 |
| Microsoft Windows Vista |
| Microsoft Windows XP |
| Microsoft Windows Server 2012 |
| Microsoft Windows 8 |
| Microsoft Windows Server 2012 R2 |
| Microsoft Windows 8.1 |
| Product: |
| Microsoft Word 2007 |
| Microsoft Word 2010 |
| Microsoft SharePoint Server 2010 |
| Microsoft Office Web Apps 2010 |
| Microsoft Office Compatibility Pack |
| Microsoft Word Viewer |
