CVE-2018-8573

Description

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft Word, Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8539.

Affected products

• Microsoft / Microsoft Office2010 Service Pack 2 (32-bit editions) – 2010 Service Pack 2 (32-bit editions)
• Microsoft / Microsoft Office2010 Service Pack 2 (64-bit editions) – 2010 Service Pack 2 (64-bit editions)
• Microsoft / Microsoft Office2019 for 32-bit editions – 2019 for 32-bit editions
• Microsoft / Microsoft Office2019 for 64-bit editions – 2019 for 64-bit editions
• Microsoft / Microsoft Word2013 Service Pack 1 (64-bit editions) – 2013 Service Pack 1 (64-bit editions)
• Microsoft / Microsoft Word2016 (32-bit edition) – 2016 (32-bit edition)
• Microsoft / Microsoft Word2016 (64-bit edition) – 2016 (64-bit edition)
• Microsoft / Microsoft Word2010 Service Pack 2 (32-bit editions) – 2010 Service Pack 2 (32-bit editions)
• Microsoft / Microsoft Word2010 Service Pack 2 (64-bit editions) – 2010 Service Pack 2 (64-bit editions)
• Microsoft / Microsoft Word2013 RT Service Pack 1 – 2013 RT Service Pack 1
• Microsoft / Microsoft Word2013 Service Pack 1 (32-bit editions) – 2013 Service Pack 1 (32-bit editions)
• Microsoft / office365 ProPlus for 32-bit Systems – 365 ProPlus for 32-bit Systems
• Microsoft / office365 ProPlus for 64-bit Systems – 365 ProPlus for 64-bit Systems

References

• MISChttp://www.securityfocus.com/bid/105836
• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8573
• MISChttp://www.securitytracker.com/id/1042114