CVE-2018-8577

Name of the Vulnerable Software and Affected Versions Microsoft Excel (affected versions not specified) Office 365 ProPlus (affected versions not specified) Microsoft Office (affected versions not specified) Microsoft Excel Viewer (affected versions not specified)

Description A remote code execution issue exists in Microsoft Excel due to improper handling of objects in memory. This allows an attacker to execute arbitrary code in the context of the current user by using a specially crafted file. If the user has administrative privileges, the attacker could gain control of the system, enabling them to install programs, view, change, or delete data, and create new accounts with full user rights. Users with limited system privileges are less affected than those operating with administrative rights.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.