Modified
![Word Word](https://answers.laserfiche.com/files/downloader/149562)
NVD Analysts use publicly available information to associate vector strings and CVSS scores. We also display any CVSS information provided within the CVE List from the CNA.
Note: NVD Analysts have not published a CVSS score for this CVE at this time. NVD Analysts use publicly available information at the time of analysis to associate CVSS vector strings.
CVSS 2.0 Severity and Metrics:
![Download Download](https://piyushaggarwal.me/uploads/0e6df0d788c8300f4784e8f91646f443.jpg)
Microsoft Word 2015 free download - Microsoft Word 2013, Microsoft Office Word 2007 Update, Microsoft Word 2002 Update, and many more programs. CVE-2015-1649 Detail Modified. Word 2010 SP2, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps Server 2010 SP2 allows remote attackers to execute arbitrary code via a crafted Office document, aka 'Microsoft Office Component Use After Free Vulnerability.'
Word Viewer is an easy-to-use free Word viewer. You can read MicroSoft Word 2007 (.DOCX), MicroSoft Word 97-2003(.DOC), Hyper Text Markup Language (.Htm,.Html), Plain Text Format (.TXT), Rich. The Word Viewer, PowerPoint Viewer and Excel Viewer have been retired.T hese Viewers will no longer be available for download or receive security updates. To continue viewing Office files for free, we recommend installing the Office apps or storing documents in OneDrive or Dropbox, where Word Online, Excel Online or PowerPoint Online opens them in your browser.
This vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.
Current Description
Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps Server 2010 SP2 allows remote attackers to execute arbitrary code via a crafted Office document, aka 'Microsoft Office Component Use After Free Vulnerability.'
Analysis Description
Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps Server 2010 SP2 allows remote attackers to execute arbitrary code via a crafted Office document, aka 'Microsoft Office Component Use After Free Vulnerability.'
Severity
CVSS 3.x Severity and Metrics:NIST:NVD
NVD score not yet provided.
Word Viewer For Windows 10
NVD Analysts use publicly available information to associate vector strings and CVSS scores. We also display any CVSS information provided within the CVE List from the CNA.
Note: NVD Analysts have not published a CVSS score for this CVE at this time. NVD Analysts use publicly available information at the time of analysis to associate CVSS vector strings.
NIST:NVD
Vector:HyperlinkResourcehttp://www.securitytracker.com/id/1032104https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-033
Weakness Enumeration
Word Viewer 2017
CWE-ID | CWE Name | Source |
---|---|---|
NVD-CWE-Other | Other | NIST |
Known Affected Software Configurations Switch to CPE 2.2
Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.
Are we missing a CPE here? Please let us know.
Word Viewer 2016
![Download Download](https://piyushaggarwal.me/uploads/0e6df0d788c8300f4784e8f91646f443.jpg)