JSON View XML View

Key Value
MTID M116167
Title (MS16-148) Microsoft Office Memory Corruption Remote Code Execution IV (3204068)
Description A vulnerability in some versions of Microsoft Office could lead to remote code execution.
Observation A vulnerability in some versions of Microsoft Office could lead to remote code execution.

The flaw occurs when the Office software fails to properly handle objects in memory. Successful exploitation by a remote attacker could result in the execution of arbitrary code.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-148

Vendor Microsoft
Attack Vector Maliciously Crafted File
Importance 9
Impact 10.00084536000
Threat Score 9.33
Labels
Patch Tuesday
References
CVECVE-2016-7298
MSFTBulletinMS16-148
MSFTQNumber3204068
DISA IAVA2016-A-0345
MTIDM116167
CPEs
cpe:/a:microsoft:office_for_mac:2011
cpe:/a:microsoft:office:2007:sp3
cpe:/a:microsoft:word_viewer
cpe:/a:microsoft:office:2010:sp2:x64
cpe:/a:microsoft:office:2010:sp2:x86
cpe:/a:microsoft:office_for_mac:2016
Created At 2016-12-13 00:00:00 UTC
Updated At 2017-02-16 15:09:53 UTC

Back