Description

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0850, CVE-2020-0851, CVE-2020-0855, CVE-2020-0892.

Remediation

References

CVE-2020-0852

Related Vulnerabilities

WordPress Plugin Dean's FCKEditor with pwwang's code Arbitrary File Upload (1.0.0)

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-9019)

XOOPS Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4851)

MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-6662)

WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2003-1599)

Severity

High

Classification

CVE-2020-0852 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities