| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.9 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as critical, was found in Microsoft Office. Affected by this issue is some unknown functionality of the component Object Handler. The manipulation results in data processing. This vulnerability is cataloged as CVE-2017-8570. The attack may be launched remotely. Furthermore, there is an exploit available. A patch should be applied to remediate this issue.
Details
A vulnerability was found in Microsoft Office (Office Suite Software) (affected version not known). It has been classified as critical. Affected is some unknown functionality of the component Object Handler. The manipulation with an unknown input leads to a data processing vulnerability. CWE is classifying the issue as CWE-19. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0243.
The bug was discovered 07/11/2017. The weakness was shared 07/11/2017 by Security Team with McAfee as KB3213624 as confirmed security update guide (Website). The advisory is available at portal.msrc.microsoft.com. This vulnerability is traded as CVE-2017-8570 since 05/03/2017. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Successful exploitation requires user interaction by the victim. Technical details are unknown but a public exploit is available.
The exploit is shared for download at exploit-db.com. It is declared as attacked. As 0-day the estimated underground price was around $5k-$25k. The vulnerability scanner Nessus provides a plugin with the ID 101371 (Security Update for Microsoft Office Products (July 2017)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Windows : Microsoft Bulletins and running in the context l. The commercial vulnerability scanner Qualys is able to test this issue with plugin 110300 (Microsoft Office and Microsoft Office Services and Web Apps Security Update July 2017). This issue was added on 02/25/2022 to the CISA Known Exploited Vulnerabilities Catalog with a due date of 08/25/2022:
Apply updates per vendor instructions.Applying the patch KB3213624 is able to eliminate this problem. The bugfix is ready for download at catalog.update.microsoft.com. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Exploit-DB (44263), Tenable (101371) and SecurityFocus (BID 99445†). The entries VDB-103403, VDB-103421, VDB-103422 and VDB-103433 are related to this item. If you want to get best quality of vulnerability data, you may have to visit VulDB.
Product
Type
Vendor
Name
License
Website
- Vendor: https://www.microsoft.com/
CPE 2.3
CPE 2.2
Video
Youtube: Not available anymoreCVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.0VulDB Meta Temp Score: 6.9
VulDB Base Score: 6.3
VulDB Temp Score: 6.0
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.8
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Data processingCWE: CWE-19
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: Yes
Availability: 🔍
Access: Public
Status: Attacked
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
KEV Added: 🔍
KEV Due: 🔍
KEV Remediation: 🔍
KEV Ransomware: 🔍
KEV Notice: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 101371
Nessus Name: Security Update for Microsoft Office Products (July 2017)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
OpenVAS ID: 802136
OpenVAS Name: Microsoft Office 2007 Service Pack 3 Remote Code Execution Vulnerability (KB3213640)
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Exploit-DB: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: KB3213624
Timeline
05/03/2017 🔍07/11/2017 🔍
07/11/2017 🔍
07/11/2017 🔍
07/11/2017 🔍
07/11/2017 🔍
07/11/2017 🔍
07/12/2017 🔍
02/10/2025 🔍
Sources
Vendor: microsoft.comAdvisory: KB3213624
Researcher: Security Team
Organization: McAfee
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2017-8570 (🔍)
GCVE (CVE): GCVE-0-2017-8570
GCVE (VulDB): GCVE-100-103434
OVAL: 🔍
SecurityFocus: 99445 - Microsoft Office CVE-2017-8570 Remote Code Execution Vulnerability
scip Labs: https://www.scip.ch/en/?labs.20161013
See also: 🔍
Entry
Created: 07/12/2017 10:41Updated: 02/10/2025 17:08
Changes: 07/12/2017 10:41 (75), 10/31/2019 07:42 (15), 04/23/2024 06:19 (29), 09/09/2024 22:29 (1), 02/10/2025 17:08 (1)
Complete: 🔍
Cache ID: 216::103
If you want to get best quality of vulnerability data, you may have to visit VulDB.
No comments yet. Languages: en.
Please log in to comment.