Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Use-after-free vulnerability in Microsoft Office 2007 SP3, 2010 SP2, and 2013 Gold and SP1 allows remote attackers to bypass the ASLR protection mechanism via a crafted document, aka "Microsoft Office Component Use After Free Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Office组件释放后使用漏洞
Vulnerability Description
Microsoft Office是美国微软(Microsoft)公司开发的一款办公软件套件产品。常用组件有Word、Excel、Access、Powerpoint、FrontPage等。 由于Microsoft Office无法使用地址空间布局随机化(ASLR)安全功能,因此Office中存在一个安全功能绕过漏洞,此漏洞允许攻击者更可靠地预测给定调用堆栈中特定指令的内存偏移。攻击者可通过诱使用户打开经特殊设计的文件利用该漏洞运行任意代码。以下版本受到影响:Microsoft Office 2007 SP3
CVSS Information
N/A
Vulnerability Type
N/A