CVE-2017-8588

Name of the Vulnerable Software and Affected Versions Microsoft WordPad versions in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016

Description The issue is related to the way Microsoft WordPad parses specially crafted files, allowing a remote code execution. This is due to insufficient access control in the text editor. Exploitation of the vulnerability may enable a remote attacker to execute arbitrary code using a specially crafted file.

Recommendations For Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016, at the moment, there is no information about a newer version that contains a fix for this vulnerability.