CVE-2015-2470

CVE Database · CVE-2015-2470

CVE-2015-2470

· N/AModified

CVSS v3.1

N/A

EPSS

26.86%

Published

Aug 14, 2015

Modified

May 6, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Office 2007 - MSPTLS Heap Index Integer Underflow (MS15-081)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Integer underflow in Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office for Mac 2011, and Word Viewer allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Integer Underflow Vulnerability."

Weaknesses (CWE)

CWE-189

Affected Products (6)

microsoft · officevulnerable

microsoft · wordvulnerable

microsoft · word_viewervulnerable

References (6)

http://www.securitytracker.com/id/1033239

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-081

https://www.exploit-db.com/exploits/37924/

http://www.securitytracker.com/id/1033239

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-081

https://www.exploit-db.com/exploits/37924/

KEV Catalog EPSS Scores Vendors All CVEs