FortiClient VulnerabilityMicrosoft Word PDF CVE-2018-8430 Remote Code Execution Vulnerability
Description
A remote code execution vulnerability exists in Microsoft Word if a user opens a specially crafted PDF file. An attacker who successfully exploited the vulnerability could cause arbitrary code to execute in the context of the current user. To exploit the vulnerability, an attacker must entice the user to open a specially crafted PDF file. The update addresses the vulnerability by modifying how Microsoft Word parses PDF files.
Affected Applications
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions
Microsoft Word 2013 Service Pack 1 (32-bit editions)
Microsoft Word 2013 RT Service Pack 1
Microsoft Word 2016 x86
Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions
Microsoft Word 2013 Service Pack 1 (64-bit editions)
Microsoft Word 2016 x64
CVE References
CVE-2018-8430Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8430| ID | 50802 |
| Created | Sep 11, 2018 |
| Description Updated |
Dec 21, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions , Microsoft Word 2013 Service Pack 1 (32-bit editions) , Microsoft Word 2013 RT Service Pack 1 , Microsoft Word 2016 x86 , Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions , Microsoft Word 2013 Service Pack 1 (64-bit editions) , Microsoft Word 2016 x64 |