BID:104615

Microsoft Office CVE-2018-8310 Security Bypass Vulnerability

CVE-2018-8310 |

Info

Microsoft Office CVE-2018-8310 Security Bypass Vulnerability

Bugtraq ID:	104615
Class:	Unknown
CVE:	CVE-2018-8310
Remote:	Yes
Local:	No
Published:	Jul 10 2018 12:00AM
Updated:	Jul 10 2018 12:00AM
Credit:	Jonathan Birch of Microsoft Corporation
Vulnerable:	Microsoft Word 2016 (64-bit edition) 0 Microsoft Word 2016 (32-bit edition) 0 Microsoft Word 2013 Service Pack 1 (64-bit editions) Microsoft Word 2013 Service Pack 1 (32-bit editions) Microsoft Word 2013 RT Service Pack 1 0 Microsoft Word 2010 Service Pack 2 (64-bit editions) 0 Microsoft Word 2010 Service Pack 2 (32-bit editions) 0 Microsoft Office 2016 Click-to-Run (C2R) for 64-bit edition 0 - Microsoft Windows NT 4.0 Microsoft Office 2016 Click-to-Run (C2R) for 32-bit edition 0 - Microsoft Windows NT 4.0 Microsoft Office 2010 (64-bit edition) SP2 Microsoft Office 2010 (32-bit edition) SP2

Not Vulnerable:

Discussion

Microsoft Office CVE-2018-8310 Security Bypass Vulnerability

Microsoft Office is prone to a security bypass vulnerability.

An attacker can leverage this issue to bypass certain security restrictions; this may aid in launching further attacks.

Exploit / POC

Solution / Fix

Microsoft Office CVE-2018-8310 Security Bypass Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

References

Microsoft Office CVE-2018-8310 Security Bypass Vulnerability

References:

Microsoft Homepage (Microsoft)
Microsoft Office Product Homepage (Microsoft)
CVE-2018-8310 | Microsoft Office Tampering Vulnerability (Microsoft)