Microsoft Office Compatibility Pack vulnerabilities

CVE-2019-0540 [MEDIUM] CWE-601 CVE-2019-0540: A security feature bypass vulnerability exists when Microsoft Office does not validate URLs.An attac A security feature bypass vulnerability exists when Microsoft Office does not validate URLs.An attacker could send a victim a specially crafted file, which could trick the victim into entering credentials, aka 'Microsoft Office Security Feature Bypass Vulnerability'.

CVE-2019-0669 [MEDIUM] CVE-2019-0669: An information disclosure vulnerability exists when Microsoft Excel improperly discloses the content An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.