CVE-2015-1641

Microsoft Office contains a memory corruption vulnerability due to failure to properly handle rich text format files in memory. Successful exploitation allows for remote code execution in the context of the current user. Vendor/Product: Microsoft Office. Added to CISA KEV 2021-11-03; required action: Apply updates per vendor instructions.