CVE-2017-0199: Microsoft Office and WordPad Remote Code Execution Vulnerability

CVE ID

CVE-2017-0199

Vulnerability Name

Microsoft Office and WordPad Remote Code Execution Vulnerability

• Project: Microsoft
• Product: Office and WordPad

Date

• Date Added: 2021-11-03
• Due Date: 2022-05-03

Description

Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially crafted files. Successful exploitation allows for remote code execution.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2017-0199

Related Security News

• TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks
• South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware
• ClearFake Infects 9,300 Sites, Uses Fake reCAPTCHA and Turnstile to Spread Info-Stealers
• SmokeLoader Malware Resurfaces, Targeting Manufacturing and IT in Taiwan
• Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT Malware
• Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials
• Multi-Stage ValleyRAT Targets Chinese Users with Advanced Tactics
• New SideWinder Cyber Attacks Target Maritime Facilities in Multiple Countries
• China-Linked ValleyRAT Malware Resurfaces with Advanced Data Theft Tactics

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List