Vulnerability Description
Windows OLE in Windows XP and Windows Server 2003 allows an attacker to execute code when a victim opens a specially crafted file or program aka "Windows olecnv32.dll Remote Code Execution Vulnerability."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Server 2003 | - |
| Microsoft | Windows Xp | - |
References
- http://www.securityfocus.com/bid/99013Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038702Third Party AdvisoryVDB Entry
- https://support.microsoft.com/en-us/help/4025218/security-update-for-windows-xp-PatchVendor Advisory
- https://www.exploit-db.com/exploits/42211/ExploitThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/99013Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038702Third Party AdvisoryVDB Entry
- https://support.microsoft.com/en-us/help/4025218/security-update-for-windows-xp-PatchVendor Advisory
- https://www.exploit-db.com/exploits/42211/ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2017-8487?
CVE-2017-8487 is a vulnerability with a CVSS score of 7.8 (HIGH). Windows OLE in Windows XP and Windows Server 2003 allows an attacker to execute code when a victim opens a specially crafted file or program aka "Windows olecnv32.dll Remote Code Execution Vulnerabili...
How severe is CVE-2017-8487?
CVE-2017-8487 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-8487?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Server 2003, Microsoft Windows Xp.