CVE-2017-11825
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-11825
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Office 2016 Click-to-Run (C2R) and Microsoft Office 2016 for Mac allow an attacker to use a specially crafted file to perform actions in the security context of the current user, due to how Microsoft Office handles files in memory, aka "Microsoft Office Remote Code Execution Vulnerability".
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Office 2016 Click-to-Run和Office 2016 for Mac 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Office 2016 Click-to-Run是美国微软(Microsoft)公司开发的一款办公软件套件产品。Office 2016 for Mac是美国微软(Microsoft)公司开发的一款用于Mac的办公软件套件产品。 Microsoft Office 2016 Click-to-Run (C2R)和Office 2016 for Mac中存在远程代码执行漏洞,该漏洞源于程序没有正确的处理内存中的对象。远程攻击者可借助特制的文件利用该漏洞在当前用户的上下文中执行任意代码或造成任
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Microsoft Corporation | Microsoft Office 2016, Microsoft Office 2016 for Mac | Microsoft Office 2016 Click-to-Run (C2R) and Microsoft Office 2016 for Mac | - |
II. Public POCs for CVE-2017-11825
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-11825
请登录查看更多情报信息。
Same Patch Batch · Microsoft Corporation · 2017-10-13 · 61 CVEs total
| CVE-2017-11816 | Microsoft Windows Graphics Device Interface 信息泄露漏洞 | |
| CVE-2017-8726 | Microsoft Windows Edge 信息泄露漏洞 | |
| CVE-2017-8715 | Microsoft Windows Device Guard 安全漏洞 | |
| CVE-2017-8703 | Microsoft Windows Subsystem for Linux 安全漏洞 | |
| CVE-2017-8694 | Microsoft Windows Kernel Mode Driver 权限许可和访问控制问题漏洞 | |
| CVE-2017-8717 | Microsoft Windows JET Database Engine 安全漏洞 | |
| CVE-2017-11820 | Microsoft SharePoint Enterprise Server 安全漏洞 | |
| CVE-2017-11819 | Microsoft Windows Shell 安全漏洞 | |
| CVE-2017-11818 | Microsoft Windows storage 安全漏洞 | |
| CVE-2017-11817 | Microsoft Windows kernel 信息泄露漏洞 | |
| CVE-2017-11821 | Microsoft Windows Edge ChakraCore 安全漏洞 | |
| CVE-2017-11815 | Microsoft Windows Server Message Block Server 信息泄露漏洞 | |
| CVE-2017-11814 | Microsoft Windows kernel 信息泄露漏洞 | |
| CVE-2017-11813 | Microsoft Windows Internet Explorer 安全漏洞 | |
| CVE-2017-11812 | Microsoft Windows Edge ChakraCore 安全漏洞 | |
| CVE-2017-11810 | Microsoft Windows Internet Explorer scripting引擎安全漏洞 | |
| CVE-2017-11809 | Microsoft Windows Edge ChakraCore 安全漏洞 | |
| CVE-2017-11808 | Microsoft Windows Edge ChakraCore 安全漏洞 | |
| CVE-2017-11807 | Microsoft Windows Edge ChakraCore 安全漏洞 | |
| CVE-2017-11806 | Microsoft Windows Edge ChakraCore 安全漏洞 |
Showing top 20 of 61 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2017-11825
No comments yet