CVE-2014-6362 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2014-6362

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Use-after-free vulnerability in Microsoft Office 2007 SP3, 2010 SP2, and 2013 Gold and SP1 allows remote attackers to bypass the ASLR protection mechanism via a crafted document, aka Microsoft Office Component Use After Free Vulnerability.

Affected Software

Name	Vendor	Start Version	End Version
Office	Microsoft	2007-sp3 (including)	2007-sp3 (including)
Office	Microsoft	2010-sp2 (including)	2010-sp2 (including)
Office	Microsoft	2013 (including)	2013 (including)
Office	Microsoft	2013-sp1 (including)	2013-sp1 (including)

References

http://www.securityfocus.com/bid/72467
http://www.securitytracker.com/id/1031721
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-013
http://www.securityfocus.com/bid/72467
http://www.securitytracker.com/id/1031721
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-013