Unrated severityNVD Advisory· Published Apr 9, 2019· Updated Aug 4, 2024

CVE-2019-0801

Description

A remote code execution vulnerability exists when Microsoft Office fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file that points to an Excel or PowerPoint file that was also downloaded.The update addresses the vulnerability by correcting how Office handles these files., aka 'Office Remote Code Execution Vulnerability'.

Affected products

Microsoft/Office Visiocpe-rescue
Range: 2010 Service Pack 2 (32-bit editions)
Microsoft/Office 365 ProPlusv5
Range: 32-bit Systems

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0801mitrex_refsource_MISC
www.zerodayinitiative.com/advisories/ZDI-19-358/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.016
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000