VYPR
High severity7.8CISA KEVNVD Advisory· Published Apr 12, 2017· Updated Jun 17, 2026

CVE-2017-0199

CVE-2017-0199

Description

Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

13
  • Microsoft/Office5 versions
    cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2010:sp2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2013:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2016:-:*:*:*:*:*:*
    • (no CPE)range: 2007 SP3, 2010 SP2, 2013 SP1, 2016
  • cpe:2.3:a:philips:intellispace_portal:7.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:philips:intellispace_portal:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:philips:intellispace_portal:8.0:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
  • Microsoft/Windows2 versions
    cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
    • (no CPE)range: Vista SP2, Server 2008 SP2, 7 SP1, 8.1

Patches

Vulnerability mechanics

References

12

News mentions

3