CVE-2018-0950 : What You Need to Know
Learn about CVE-2018-0950, an information disclosure vulnerability in Microsoft Word and Office when processing RTF emails with OLE objects. Find out affected versions and mitigation steps.
An information disclosure vulnerability is present in Microsoft Word and Microsoft Office when processing emails in Rich Text Format (RTF) with OLE objects. This vulnerability, known as "Microsoft Office Information Disclosure Vulnerability," affects various versions of the software.
Understanding CVE-2018-0950
This CVE ID is distinct from CVE-2018-1007 and was made public on April 11, 2018.
What is CVE-2018-0950?
This vulnerability arises when Office encounters RTF emails containing OLE objects during message preview or opening, leading to potential information disclosure.
The Impact of CVE-2018-0950
The vulnerability affects Microsoft Word and Microsoft Office, potentially exposing sensitive information when handling specific email formats.
Technical Details of CVE-2018-0950
This section delves into the specifics of the vulnerability.
Vulnerability Description
The vulnerability allows for information disclosure when processing RTF emails with OLE objects in Microsoft Word and Microsoft Office.
Affected Systems and Versions
The following versions of Microsoft Word and Microsoft Office are impacted:
- Microsoft Word 2007 Service Pack 3
- Microsoft Word 2010 Service Pack 2 (32-bit and 64-bit editions)
- Microsoft Word 2013 RT Service Pack 1
- Microsoft Word 2013 Service Pack 1 (32-bit and 64-bit editions)
- Microsoft Word 2016 (32-bit and 64-bit editions)
- Microsoft Office 2010 Service Pack 2 (32-bit and 64-bit editions)
- Microsoft Office 2016 Click-to-Run (C2R) for 32-bit and 64-bit editions
- Microsoft Office Compatibility Pack Service Pack 3
Exploitation Mechanism
The vulnerability is exploited by crafting malicious RTF emails with OLE objects, triggering the disclosure of sensitive information when the email is accessed.
Mitigation and Prevention
Protecting systems from CVE-2018-0950 requires immediate actions and long-term security measures.
Immediate Steps to Take
- Apply security patches provided by Microsoft promptly.
- Educate users on safe email handling practices to mitigate risks.
Long-Term Security Practices
- Regularly update Microsoft Word and Microsoft Office to the latest versions.
- Implement email filtering mechanisms to detect and block malicious emails.
Patching and Updates
Regularly check for security updates from Microsoft and ensure timely installation to address known vulnerabilities.