CVE-2018-8429

Description

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel.

Affected products

• Microsoft / Microsoft Excel2016 (64-bit edition) – 2016 (64-bit edition)
• Microsoft / Microsoft Excel2010 Service Pack 2 (64-bit editions) – 2010 Service Pack 2 (64-bit editions)
• Microsoft / Microsoft Excel2013 RT Service Pack 1 – 2013 RT Service Pack 1
• Microsoft / Microsoft Excel2013 Service Pack 1 (32-bit editions) – 2013 Service Pack 1 (32-bit editions)
• Microsoft / Microsoft Excel2013 Service Pack 1 (64-bit editions) – 2013 Service Pack 1 (64-bit editions)
• Microsoft / Microsoft Excel2016 (32-bit edition) – 2016 (32-bit edition)
• Microsoft / Microsoft Excel2010 Service Pack 2 (32-bit editions) – 2010 Service Pack 2 (32-bit editions)
• Microsoft / Microsoft Excel Viewer2007 Service Pack 3 – 2007 Service Pack 3
• Microsoft / Microsoft Office2016 Click-to-Run (C2R) for 32-bit editions – 2016 Click-to-Run (C2R) for 32-bit editions
• Microsoft / Microsoft Office2016 Click-to-Run (C2R) for 64-bit editions – 2016 Click-to-Run (C2R) for 64-bit editions
• Microsoft / Microsoft Office2016 for Mac – 2016 for Mac
• Microsoft / Microsoft OfficeCompatibility Pack Service Pack 3 – Compatibility Pack Service Pack 3

References

• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8429
• MISChttp://www.securityfocus.com/bid/105219
• MISChttp://www.securitytracker.com/id/1041630