Microsoft Windows OLE Object Handling Remote Code Execution Vulnerability

Last Update Date: 23 Oct 2014 09:22 Release Date: 23 Oct 2014 4601 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

A vulnerability has been identified in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error when handling OLE objects embedded within Microsoft Office files and can be exploited to execute arbitrary code.

Note:

No patch is available currently, but the vendor has provided workarounds.

Reportedly, this vulnerability is currently being exploited in limited, targeted attacks.

Impact

  • Remote Code Execution

System / Technologies affected

  • Microsoft Windows 7
  • Microsoft Windows 8
  • Microsoft Windows 8.1
  • Microsoft Windows RT
  • Microsoft Windows RT 8.1
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2012
  • Microsoft Windows Vista

 

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Apple iTunes Multiple Vulnerabilities

20 Oct 2014 3876 Views

Next

Apple TV Multiple Vulnerabilities

22 Oct 2014 3865 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY