CVE-2020-1448

Name of the Vulnerable Software and Affected Versions Microsoft Word (affected versions not specified) Microsoft Office (affected versions not specified) Microsoft SharePoint (affected versions not specified)

Description The issue is related to the incorrect handling of objects in memory, which can be exploited by a remote attacker to execute arbitrary code using a specially crafted file. To exploit the issue, a user must open the specially crafted file with an affected version of the software. This can allow the attacker to perform actions in the security context of the current user.

Recommendations For Microsoft Word, consider avoiding the use of specially crafted files until a fix is available. For Microsoft Office, restrict the opening of suspicious files to minimize the risk of exploitation. For Microsoft SharePoint, consider implementing additional security measures to prevent the upload and sharing of specially crafted files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.