CVE-2017-0199 - Microsoft Office and WordPad Remote Code Execution Vulnerability
Project:Microsoft
Product:Office and WordPad
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
Microsoft Office and WordPad Remote Code Execution Vulnerability
Description
Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially crafted files. Successful exploitation allows for remote code execution.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2017-0199
Related News Articles
TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel AttacksSeptember 18, 2025
South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom MalwareMay 20, 2025
ClearFake Infects 9,300 Sites, Uses Fake reCAPTCHA and Turnstile to Spread Info-StealersMarch 19, 2025
SmokeLoader Malware Resurfaces, Targeting Manufacturing and IT in TaiwanDecember 2, 2024
Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT MalwareNovember 11, 2024