CVE-2019-0585 vulnerability in Microsoft Products
Published on January 8, 2019
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft SharePoint, Microsoft Office Online Server, Microsoft Word, Microsoft SharePoint Server.
Products Associated with CVE-2019-0585
Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.
Affected Versions
Microsoft Word:- Version Automation Services on Microsoft SharePoint Server 2010 Service Pack 2 is affected.
- Version 2010 Service Pack 2 (32-bit editions) is affected.
- Version 2010 Service Pack 2 (64-bit editions) is affected.
- Version 2016 for Mac is affected.
- Version 2019 for 32-bit editions is affected.
- Version 2019 for 64-bit editions is affected.
- Version 2019 for Mac is affected.
- Version Web Apps Server 2010 Service Pack 2 is affected.
- Version Microsoft Office Word Viewer is affected.
- Version Enterprise Server 2013 Service Pack 1 is affected.
- Version Enterprise Server 2016 is affected.
- Version 365 ProPlus for 32-bit Systems is affected.
- Version 365 ProPlus for 64-bit Systems is affected.
- Version Microsoft Office Online Server is affected.
- Version 2010 Service Pack 2 (32-bit editions) is affected.
- Version 2010 Service Pack 2 (64-bit editions) is affected.
- Version 2013 RT Service Pack 1 is affected.
- Version 2013 Service Pack 1 (32-bit editions) is affected.
- Version 2013 Service Pack 1 (64-bit editions) is affected.
- Version 2016 (32-bit edition) is affected.
- Version 2016 (64-bit edition) is affected.
- Version 2019 is affected.
Exploit Probability
EPSS
28.16%
Percentile
96.42%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.