High severity7.8NVD Advisory· Published Nov 15, 2017· Updated Jun 17, 2026
CVE-2017-11884
CVE-2017-11884
Description
Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11882.
Affected products
4- Microsoft Corporation/Microsoft Officev5Range: Microsoft Excel 2016 Click-to-Run (C2R)
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11884nvdPatchVendor Advisory
- www.securityfocus.com/bid/101766nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039783nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.