Microsoft Office CVE-2019-0801 Remote Code Execution Vulnerability
Description
A remote code execution vulnerability exists when Microsoft Office fails to properly handle certain files. To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file that points to an Excel or PowerPoint file that was also downloaded. The update addresses the vulnerability by correcting how Office handles these files.
Affected Applications
Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2016 x64
Microsoft Office 2013 RT Service Pack 1
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Office 365 ProPlus for 64-bit Systems
Microsoft Office 2019 for 32-bit editions
Office 365 ProPlus for 32-bit Systems
Microsoft Office 2016 x86