CVE-2017-11826

Name of the Vulnerable Software and Affected Versions Microsoft Office versions 2007 through 2016 Microsoft Office Web Apps Server versions 2010 through 2013 Office Online Server SharePoint Enterprise Server 2010 SharePoint Server 2010 Word Viewer Word Automation Services

Description A remote code execution issue exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the issue could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Exploitation of the issue requires that a user open a specially crafted file with an affected version of Microsoft Office software.

Recommendations For Microsoft Office versions 2007 through 2016, update to a newer version to mitigate the risk. For Microsoft Office Web Apps Server versions 2010 through 2013, update to a newer version to mitigate the risk. For Office Online Server, update to a newer version to mitigate the risk. For SharePoint Enterprise Server 2010 and SharePoint Server 2010, update to a newer version to mitigate the risk. For Word Viewer and Word Automation Services, update to a newer version to mitigate the risk. As a temporary workaround, consider avoiding the use of specially crafted files with affected versions of Microsoft Office software until a patch is available.