Wanglu

**Name of the Vulnerable Software and Affected Versions** Microsoft PowerPoint (affected versions not specified) **Description** A remote code execution issue exists in Microsoft PowerPoint software due to improper handling of objects in memory. This could allow an attacker to execute arbitrary code by using a specially crafted file. If the current user has administrative rights, an attacker could gain control of the system, install programs, view, change, or delete data, or create new accounts with full user rights. Users with fewer user rights may be less impacted. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Excel (affected versions not specified) **Description** The issue is caused by a buffer overflow in memory, allowing a remote attacker to execute arbitrary code using a specially crafted file. An attacker who successfully exploits this issue could run arbitrary code in the context of the current user. If the current user has administrative rights, the attacker could take control of the affected system, install programs, view, change, or delete data, or create new accounts with full user rights. Users with limited user rights may be less impacted than those operating with administrative rights. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 65.0.3325.146 Opera versions prior to 65.0.3325.146 **Description** A stack buffer overflow in Skia allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. **Recommendations** For Google Chrome versions prior to 65.0.3325.146, update to version 65.0.3325.146 or later. For Opera versions prior to 65.0.3325.146, update to version 65.0.3325.146 or later.