CVE-2017-0105: Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010…

medium5.5CVSS 3.0

AVLACLPRNUIRSUCHINAN

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from out-of-bound memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."

Affected

13 ranges

Vendor	Product	Version range	Fixed in
microsoft	office	—	—
microsoft	office_web_apps	—	—
microsoft	sharepoint_server	—	—
microsoft	word	—	—
microsoft	word_for_mac	—	—
microsoft_corporation	office	—	—
msrc	microsoft_office_2010_service_pack_2	—	—
msrc	microsoft_office_compatibility_pack_service_pack_3	—	—
msrc	microsoft_office_web_apps_server_2010_service_pack_2	—	—
msrc	microsoft_word_2007_service_pack_3	—	—
msrc	microsoft_word_2010_service_pack_2	—	—
msrc	microsoft_word_for_mac_2011	—	—
msrc	word_automation_services_on_microsoft_sharepoint_server_2010_service_pack_2	—	—