JSON View XML View

Key Value
MTID M116170
Title (MS16-148) Microsoft Office Information Disclosure III (3204068)
Description A vulnerability in some versions of Microsoft Office could lead to information disclosure.
Observation A vulnerability in some versions of Microsoft Office could lead to information disclosure.

The flaw occurs when affected Microsoft Office software reads out of bound memory, which could disclose the contents of memory. Successful exploitation by a remote attacker could result in the disclosure of sensitive information.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-148

Vendor Microsoft
Attack Vector Maliciously Crafted File
Importance 5
Impact 4.938243750
Threat Score 5.76
Labels
Patch Tuesday
References
CVECVE-2016-7276
MSFTBulletinMS16-148
MSFTQNumber3204068
DISA IAVA2016-A-0345
MTIDM116170
CPEs
cpe:/a:microsoft:office_for_mac:2011
cpe:/a:microsoft:office:2007:sp3
cpe:/a:microsoft:word_viewer
cpe:/a:microsoft:office:2010:sp2:x64
cpe:/a:microsoft:office:2010:sp2:x86
cpe:/a:microsoft:office:2013:sp1:x86
cpe:/a:microsoft:office:2013:sp1:x64
cpe:/a:microsoft:office:2013:rt:sp1
cpe:/a:microsoft:office_for_mac:2016
cpe:/a:microsoft:excel:2016:mac
Created At 2016-12-13 00:00:00 UTC
Updated At 2017-02-16 15:09:52 UTC

Back