CVE-2020-0852

Name of the Vulnerable Software and Affected Versions Microsoft Word (affected versions not specified) Microsoft Office (affected versions not specified) Microsoft Office Online Server (affected versions not specified) Microsoft SharePoint Server (affected versions not specified)

Description The issue is related to a buffer overflow in memory, allowing an attacker to execute arbitrary code. This can be achieved by exploiting the vulnerability through a specially crafted file, which, when opened, enables actions to be performed in the security context of the current user, with the same permissions as the current user.

Recommendations For Microsoft Word, consider avoiding the use of specially crafted files until a fix is available. For Microsoft Office, restrict access to potentially vulnerable components to minimize the risk of exploitation. For Microsoft Office Online Server, restrict access to the server to minimize the risk of exploitation. For Microsoft SharePoint Server, restrict access to potentially vulnerable components to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.