CVE-2015-2467

Name of the Vulnerable Software and Affected Versions Microsoft Office versions prior to the fixed version

Description A remote code execution issue exists in Microsoft Office software due to its failure to properly handle objects in memory. An attacker could exploit this by using a specially crafted file, allowing them to perform actions in the security context of the current user. This requires a user to open the specially crafted file with an affected version of Microsoft Office software.

Recommendations For Microsoft Office 2007 SP3, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.