High severity8.8CISA KEVNVD Advisory· Published Jul 14, 2015· Updated Jun 17, 2026
CVE-2015-2424
CVE-2015-2424
Description
Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013 SP1, Word 2013 SP1, and PowerPoint 2013 RT SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12- cpe:2.3:a:microsoft:excel_viewer:2007:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2010:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2011:*:*:*:*:macos:*:*
- cpe:2.3:a:microsoft:office:2013:sp1:*:*:-:*:*:*
- cpe:2.3:a:microsoft:office:2013:sp1:*:*:rt:*:*:*
- (no CPE)
- cpe:2.3:a:microsoft:office_compatibility_pack:-:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:powerpoint:2007:sp3:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:powerpoint:2007:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:powerpoint:2010:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:word_viewer:-:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-070nvdPatchVendor Advisory
- www.securitytracker.com/id/1032899nvdBroken LinkThird Party AdvisoryVDB Entry
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
0No linked articles in our index yet.