| CVE-ID |
CVE-2014-4114
|
• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
|
| Description |
| Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1,
Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and
R2, and Windows RT Gold and 8.1 allow remote attackers to execute
arbitrary code via a crafted OLE object in an Office document, as
exploited in the wild with a "Sandworm" attack in June through October
2014, aka "Windows OLE Remote Code Execution Vulnerability."
|
| References |
|
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
|
|
|
| Date Entry Created |
| 20140612 |
Disclaimer: The entry creation date may reflect when
the CVE-ID was allocated or reserved, and does not
necessarily indicate when this vulnerability was
discovered, shared with the affected vendor, publicly
disclosed, or updated in CVE.
|
| Phase (Legacy) |
| Assigned (20140612) |
| Votes (Legacy) |
|
| Comments (Legacy) |
|
| Proposed (Legacy) |
| N/A |
|
This is an entry on the CVE
list, which standardizes names for security
problems. |
|
|
|
For More Information: cve@mitre.org
|