CVE-2018-8575

Summary

A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Project2010 Service Pack 2 (32-bit editions)affected
MicrosoftMicrosoft Project2010 Service Pack 2 (64-bit editions)affected
MicrosoftMicrosoft Project2016 (32-bit edition)affected
MicrosoftMicrosoft Project2016 (64-bit edition)affected
MicrosoftOffice365 ProPlus for 32-bit Systemsaffected
MicrosoftOffice365 ProPlus for 64-bit Systemsaffected
MicrosoftMicrosoft Project Server2013 Service Pack 1 (32-bit edition)affected
MicrosoftMicrosoft Project Server2013 Service Pack 1 (64-bit edition)affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References