Vulnerability Description
Windows PDF in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows remote code execution if a user opens a specially crafted PDF file, aka "Windows PDF Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0291.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Word | 2013 |
| Microsoft | Windows 10 | - |
| Microsoft | Windows 8.1 | All versions |
| Microsoft | Windows Rt 8.1 | All versions |
| Microsoft | Windows Server 2012 | - |
| Microsoft | Windows Server 2016 | All versions |
References
- http://www.securityfocus.com/bid/98836Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038678
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0292PatchVendor Advisory
- http://www.securityfocus.com/bid/98836Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038678
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0292PatchVendor Advisory
FAQ
What is CVE-2017-0292?
CVE-2017-0292 is a vulnerability with a CVSS score of 7.8 (HIGH). Windows PDF in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows remote code execution if a user opens a specially crafted...
How severe is CVE-2017-0292?
CVE-2017-0292 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-0292?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Word, Microsoft Windows 10, Microsoft Windows 8.1, Microsoft Windows Rt 8.1, Microsoft Windows Server 2012.