JSON View XML View

Key Value
MTID M116168
Title (MS16-148) Microsoft Office Information Disclosure I (3204068)
Description A vulnerability in some versions of Microsoft Office could lead to information disclosure.
Observation A vulnerability in some versions of Microsoft Office could lead to information disclosure.

The flaw occurs when affected Microsoft Office software reads out of bound memory, which could disclose the contents of memory. Successful exploitation by a remote attacker could result in the disclosure of sensitive information.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-148

Vendor Microsoft
Attack Vector Maliciously Crafted File
Importance 5
Impact 4.938243750
Threat Score 5.76
Labels
Patch Tuesday
References
CVECVE-2016-7264
MSFTBulletinMS16-148
MSFTQNumber3204068
DISA IAVA2016-A-0345
MTIDM116168
CPEs
cpe:/a:microsoft:excel_viewer
cpe:/a:microsoft:excel:2007:sp3
cpe:/a:microsoft:office_compatibility_pack::sp3
cpe:/a:microsoft:excel:2011:mac
cpe:/a:microsoft:excel:2016:mac
Created At 2016-12-13 00:00:00 UTC
Updated At 2017-02-16 15:09:51 UTC

Back