Msrc Microsoft Office 2010 Service Pack 2 vulnerabilities
194 known vulnerabilities affecting msrc/microsoft_office_2010_service_pack_2.
Total CVEs
194
CISA KEV
10
actively exploited
Public exploits
23
Exploited in wild
12
Severity breakdown
CRITICAL10HIGH162MEDIUM18LOW4
Vulnerabilities
Page 10 of 10
CVE-2016-3301HIGHCVSS 8.8PoC2016-08-09
CVE-2016-3301 [HIGH] Microsoft Graphics Remote Code Execution Vulnerability
Microsoft Graphics Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whos
msrc
CVE-2016-3303HIGHCVSS 8.8PoC2016-08-09
CVE-2016-3303 [HIGH] Microsoft Graphics Remote Code Execution Vulnerability
Microsoft Graphics Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whos
msrc
CVE-2016-3281CRITICALCVSS 7.82016-07-12
CVE-2016-3281 [HIGH] Microsoft Office Memory Corruption Vulnerability
Microsoft Office Memory Corruption Vulnerability
Description: A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the af
msrc
CVE-2016-3282CRITICALCVSS 7.82016-07-12
CVE-2016-3282 [HIGH] Microsoft Office Memory Corruption Vulnerability
Microsoft Office Memory Corruption Vulnerability
Description: A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the af
msrc
CVE-2016-3279HIGHCVSS 5.52016-07-12
CVE-2016-3279 [MEDIUM] Microsoft Office Security Feature Bypass Vulnerability
Microsoft Office Security Feature Bypass Vulnerability
Description: A security feature bypass vulnerability exists in Microsoft Office software when it improperly handles the parsing of file formats. The security feature bypass by itself does not allow arbitrary code execution. However, to successfully exploit the vulnerability, an attacker would have to use it in conjunction with another vulnerability, such as a remo
msrc
CVE-2016-3280HIGHCVSS 7.82016-07-12
CVE-2016-3280 [HIGH] Microsoft Office Memory Corruption Vulnerability
Microsoft Office Memory Corruption Vulnerability
Description: A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the af
msrc
CVE-2016-3234HIGHCVSS 5.52016-06-14
CVE-2016-3234 [MEDIUM] Microsoft Office Information Disclosure Vulnerability
Microsoft Office Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data.
To exploit the vulnerability, an attacker could craft a special document file and then convince the user to open it. An atta
msrc
CVE-2016-0198CRITICALCVSS 7.82016-05-10
CVE-2016-0198 [HIGH] Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the a
msrc
CVE-2016-0183CRITICALCVSS 8.82016-05-10
CVE-2016-0183 [HIGH] Microsoft Office Graphics Remote Code Execution Vulnerability
Microsoft Office Graphics Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full use
msrc
CVE-2016-0140HIGHCVSS 7.82016-05-10
CVE-2016-0140 [HIGH] Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the a
msrc
CVE-2016-0145CRITICALCVSS 8.8PoC2016-04-12
CVE-2016-0145 [HIGH] GDI+ Remote Code Execution Vulnerability
GDI+ Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to
msrc
CVE-2016-0127CRITICALCVSS 7.82016-04-12
CVE-2016-0127 [HIGH] Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the a
msrc
CVE-2016-0010CRITICALCVSS 7.82016-01-12
CVE-2016-0010 [HIGH] CVE-2016-0010: Impact: Remote Code Execution
Exploit Status: Publicly Disclosed:No;Exploited:No
Impact: Remote Code Execution
Exploit Status: Publicly Disclosed:No;Exploited:No
msrc
CVE-2016-0012HIGHCVSS 4.32016-01-12
CVE-2016-0012 [MEDIUM] CVE-2016-0012: Impact: Security Feature Bypass
Exploit Status: Publicly Disclosed:No;Exploited:No
Impact: Security Feature Bypass
Exploit Status: Publicly Disclosed:No;Exploited:No
msrc
← Previous10 / 10