Statements (23)
Predicate | Object |
---|---|
gptkbp:instanceOf |
gptkb:security
|
gptkbp:affects |
gptkb:Microsoft_Office
|
gptkbp:assignee |
gptkb:MITRE
|
gptkbp:attack_vector |
malicious Office documents
|
gptkbp:describes |
A memory corruption vulnerability in Microsoft Equation Editor (EQNEDT32.EXE) that allows remote code execution.
|
gptkbp:discoveredBy |
2017
|
gptkbp:exploited_in_the_wild |
true
|
gptkbp:hasCVSSScore |
7.8
|
gptkbp:hasCWE |
gptkb:CWE-119
|
https://www.w3.org/2000/01/rdf-schema#label |
CVE-2017-11882
|
gptkbp:impact |
arbitrary code execution
|
gptkbp:patchedBy |
Microsoft security update November 2017
|
gptkbp:platform |
gptkb:Windows
|
gptkbp:publicly_disclosed |
true
|
gptkbp:requires_user_interaction |
true
|
gptkbp:targeted_component |
Equation Editor
|
gptkbp:used_by_malware |
true
|
gptkbp:vulnerableTo |
gptkb:CVE-2017-11882
remote code execution |
gptkbp:bfsParent |
gptkb:APT3
gptkb:Zebrocy_malware gptkb:Microsoft_Equation_Editor |
gptkbp:bfsLayer |
7
|