CVE-2018-0798

HIGH
2018-01-10 [email protected]
8.8
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Mar 26, 2026 - 11:18 vuln.today
Added to CISA KEV
Oct 28, 2025 - 14:14 cisa
CISA KEV
Patch Released
Oct 28, 2025 - 14:14 nvd
Patch available
CVE Published
Jan 10, 2018 - 01:29 nvd
HIGH 8.8

Description

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability".

Analysis

Microsoft Office 2007 through 2016 Equation Editor contains a memory corruption vulnerability enabling remote code execution through crafted documents, a companion exploit to CVE-2017-11882 targeting the same legacy component.

Technical Context

The CWE-787 out-of-bounds write in EQNEDT32.EXE is triggered by a different code path than CVE-2017-11882 but exploits the same unprotected binary. The lack of ASLR, DEP, and stack cookies makes exploitation trivially reliable.

Affected Products

['Microsoft Office 2007 SP3', 'Microsoft Office 2010 SP2', 'Microsoft Office 2013 SP1', 'Microsoft Office 2016']

Remediation

Apply Microsoft security update. Remove EQNEDT32.EXE from Office installations. The component is unnecessary for modern document workflows.

Priority Score

198
Low Medium High Critical
KEV: +50
EPSS: +94.1
CVSS: +44
POC: 0

Share

CVE-2018-0798 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy