VYPR
Get started
← All advisories
High severity7.5NVD Advisory· Published Sep 13, 2017· Updated May 13, 2026

CVE-2017-8696

CVE-2017-8696

Description

Windows Uniscribe in Microsoft Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Office 2007 SP3; Office 2010 SP2; Word Viewer; Office for Mac 2011 and 2016; Skype for Business 2016; Lync 2013 SP1; Lync 2010; Lync 2010 Attendee; and Live Meeting 2007 Add-in and Console allows an attacker to execute code remotely via a specially crafted website or a specially crafted document or email attachment, aka "Microsoft Graphics Component Remote Code Execution."

Affected products

13
  • Microsoft/Live Meeting
    cpe:2.3:a:microsoft:live_meeting:2007:*:*:*:*:*:*:*
  • Microsoft/Lync3 versions
    cpe:2.3:a:microsoft:lync:2010:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:lync:2010:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:lync:2010:*:attendee:*:*:*:*:*
    • cpe:2.3:a:microsoft:lync:2013:sp1:*:*:*:*:*:*
  • Microsoft/Office 2007
    cpe:2.3:a:microsoft:office_2007:-:sp3:*:*:*:*:*:*
  • Microsoft/Office 2010
    cpe:2.3:a:microsoft:office_2010:*:sp2:*:*:*:*:*:*
  • Microsoft/Office Web Apps
    cpe:2.3:a:microsoft:office_web_apps:2010:sp2:*:*:*:*:*:*
  • Microsoft/Office Word Viewer
    cpe:2.3:a:microsoft:office_word_viewer:-:*:*:*:*:*:*:*
  • Microsoft/Skype For Business
    cpe:2.3:a:microsoft:skype_for_business:2016:*:*:*:*:*:*:*
  • Microsoft/Windows 7
    cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:*:*
  • Microsoft/Windows Server 20083 versions
    cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.