CVE-2017-0030 Information
Feb 14, 2021
cve
Description
Microsoft Office 2010 SP2 Office Compatibility Pack SP3 Office Web Apps Server 2010 SP2 Word 2007 SP3 Word 2010 SP2 and Word Automation Services on SharePoint Server 2010 SP2 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document aka \Microsoft Office Memory Corruption Vulnerability.\ This vulnerability is different from those described in CVE-2017-0006 CVE-2017-0019 CVE-2017-0020 CVE-2017-0031 CVE-2017-0052 and CVE-2017-0053.
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Reference
http://www.securityfocus.com/bid/96051 http://www.securitytracker.com/id/1038010 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0030
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
REQUIRED
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
7.8
Share on: