Microsoft Office Malformed String Parsing Code Execution Vulnerability

Microsoft Office Malformed String Parsing Code Execution Vulnerability

Microsoft Office is prone to a code-execution vulnerability. This condition can occur when a malformed string within an Office file is parsed.

This vulnerability is located in a shared library used by multiple Office applications, potentially allowing many different attack vectors.

An attacker could exploit this issue by enticing a victim to load a malicious Office file. If the vulnerability is successfully exploited, this could result in the execution of arbitrary code in the context of the currently logged-in user.

This issue differs from the one described in BID 18912 (Microsoft Office String Parsing Remote Code Execution Vulnerability).