CVE-2018-0802

Name of the Vulnerable Software and Affected Versions Microsoft Office (affected versions not specified) Microsoft Office Compatibility Pack (affected versions not specified) Microsoft Word (affected versions not specified)

Description This issue is a remote code execution flaw in Microsoft Office software. The problem stems from improper handling of objects in memory. A successful exploit allows an attacker to execute arbitrary code with the privileges of the current user. If the user has administrative rights, the attacker could gain full control of the system, including the ability to install programs, modify or delete data, and create new accounts. Exploitation requires a user to open a specially crafted file using an affected version of Microsoft Office or Microsoft WordPad. The Cloud Atlas threat group has been observed utilizing this vulnerability in attacks, deploying malware like VBCloud via phishing emails containing malicious documents that exploit the flaw in the equation editor. These attacks primarily target users in Russia.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.