JSON View XML View

Key Value
MTID M116179
Title (MS16-148) Microsoft Office OLE DLL Side Loading Remote Code Execution (3204068)
Description A vulnerability in some versions of Microsoft Office could lead to remote code execution.
Observation A vulnerability in some versions of Microsoft Office could lead to remote code execution.

The flaw occurs when Microsoft Office improperly validates input before loading libraries. Successful exploitation by a remote attacker could result in the execution of arbitrary code.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-148

Vendor Microsoft
Attack Vector Local Application
Importance 5
Impact 10.00084536000
Threat Score 7.15
Labels
Patch Tuesday
References
CVECVE-2016-7275
MSFTBulletinMS16-148
MSFTQNumber3204068
DISA IAVA2016-A-0345
MTIDM116179
CPEs
cpe:/a:microsoft:office:2010:sp2:x64
cpe:/a:microsoft:office:2010:sp2:x86
cpe:/a:microsoft:office:2013:sp1:x86
cpe:/a:microsoft:office:2013:sp1:x64
cpe:/a:microsoft:office:2013:rt:sp1
cpe:/a:microsoft:office:2016
cpe:/a:microsoft:office:2016::x64
Created At 2016-12-13 00:00:00 UTC
Updated At 2017-02-16 15:09:52 UTC

Back