{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Outlook 2016 (\u00e9dition 32 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2016 (\u00e9dition 32 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Web Apps Server 2013 Service Pack 1","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Outlook 2013 Service Pack 1 (\u00e9ditions 32 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Word Automation Services","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2016 (\u00e9dition 64 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2016 pour Mac","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2013 Service Pack 1 (\u00e9ditions 32 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Compatibility Pack Service Pack 3","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Web Apps Server 2010 Service Pack 2","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Outlook 2013 Service Pack 1 (\u00e9ditions 64 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft SharePoint Enterprise Server 2016","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Outlook 2016 (\u00e9dition 64 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2013 Service Pack 1 (\u00e9ditions 64 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2010 Service Pack 2 (\u00e9ditions 32 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2013 RT Service Pack 1","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2016 Click-to-Run (C2R) pour \u00e9ditions 64 bits","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Outlook 2010 Service Pack 2 (\u00e9ditions 64 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Online Server 2016","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Outlook 2010 Service Pack 2 (\u00e9ditions 32 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2010 Service Pack 2 (\u00e9ditions 64 bits)","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Word 2007 Service Pack 3","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2016 Click-to-Run (C2R) pour \u00e9ditions 32 bits","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft SharePoint Enterprise Server 2013 Service Pack 1","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Outlook 2013 RT Service Pack 1","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Word Viewer","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2017-11826","url":"https://www.cve.org/CVERecord?id=CVE-2017-11826"},{"name":"CVE-2017-11776","url":"https://www.cve.org/CVERecord?id=CVE-2017-11776"},{"name":"CVE-2017-11825","url":"https://www.cve.org/CVERecord?id=CVE-2017-11825"},{"name":"CVE-2017-11777","url":"https://www.cve.org/CVERecord?id=CVE-2017-11777"},{"name":"CVE-2017-11820","url":"https://www.cve.org/CVERecord?id=CVE-2017-11820"},{"name":"CVE-2017-11775","url":"https://www.cve.org/CVERecord?id=CVE-2017-11775"},{"name":"CVE-2017-11774","url":"https://www.cve.org/CVERecord?id=CVE-2017-11774"}],"links":[],"reference":"CERTFR-2017-AVI-344","revisions":[{"description":"Version initiale","revision_date":"2017-10-11T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Office.\nCertaines d'entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un contournement de la\npolitique de s\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Office","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft octobre du 10 octobre 2017","url":"https://portal.msrc.microsoft.com/fr-FR/security-guidance"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft du 10 octobre 2017","url":"https://portal.msrc.microsoft.com/fr-fr/security-guidance/releasenotedetail/313ae481-3088-e711-80e2-000d3a32fc99"}]}