CVE-2017-8742

CVE Database · CVE-2017-8742

CVE-2017-8742

· N/AModified

CVSS v3.1

N/A

EPSS

21.32%

Published

Sep 12, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A remote code execution vulnerability exists in Microsoft PowerPoint 2007 Service Pack 3, Microsoft PowerPoint 2010 Service Pack 2, Microsoft PowerPoint 2013 Service Pack 1, Microsoft PowerPoint 2013 RT Service Pack 1, Microsoft PowerPoint 2016, Microsoft PowerPoint Viewer 2007, Microsoft SharePoint Server 2013 Service Pack 1, Microsoft SharePoint Enterprise Server 2016, Microsoft Office Web Apps 2010 Service Pack 2, and Microsoft Office Compatibility Pack Service Pack 3 when they fail to properly handle objects in memory, aka "PowerPoint Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8743.

Weaknesses (CWE)

CWE-119

Affected Products (11)

microsoft · office_compatibility_packvulnerable

microsoft · office_web_appsvulnerable

microsoft · office_web_apps_servervulnerable

microsoft · powerpointvulnerable