CVE-2019-1264

Name of the Vulnerable Software and Affected Versions Microsoft Office (affected versions not specified) Office 365 (affected versions not specified) Microsoft Project (affected versions not specified)

Description A security feature bypass issue exists due to improper handling of input in Microsoft Office, allowing an attacker to execute arbitrary commands by exploiting the vulnerability. The vulnerability can be exploited through a specially crafted file.

Recommendations For Microsoft Office, consider implementing additional input validation mechanisms until a patch is available. For Office 365, restrict access to potentially vulnerable features to minimize the risk of exploitation. For Microsoft Project, avoid using potentially vulnerable functions until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.