Rapid7 Vulnerability & Exploit Database

CVE-2018-8427: Microsoft Graphics Components Information Disclosure Vulnerability [Office for Mac]

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

CVE-2018-8427: Microsoft Graphics Components Information Disclosure Vulnerability [Office for Mac]

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:N/A:N)

Published

10/09/2018

Created

03/19/2019

Added

12/11/2018

Modified

08/13/2019

Description

An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could obtain information that could be useful for further exploitation. To exploit the vulnerability, a user would have to open a specially crafted file. The security update addresses the vulnerability by correcting how Microsoft Graphics Components handle objects in memory.

Solution(s)

office-for-mac-upgrade-16_16_3
office-for-mac-upgrade-16_18_0

References

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

CVE-2018-8427: Microsoft Graphics Components Information Disclosure Vulnerability [Office for Mac]

CVE-2018-8427: Microsoft Graphics Components Information Disclosure Vulnerability [Office for Mac]

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.