CVE-2017-11825

Summary

Microsoft Office 2016 Click-to-Run (C2R) and Microsoft Office 2016 for Mac allow an attacker to use a specially crafted file to perform actions in the security context of the current user, due to how Microsoft Office handles files in memory, aka "Microsoft Office Remote Code Execution Vulnerability".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationMicrosoft Office 2016, Microsoft Office 2016 for MacMicrosoft Office 2016 Click-to-Run (C2R) and Microsoft Office 2016 for Macaffected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References