Windows : Microsoft Bulletins : Microsoft Office Compatibility Pack Multiple RCE Vulnerabilities (3185852)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.807365

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Office Compatibility Pack Multiple RCE Vulnerabilities (3185852)

Resumen: This host is missing a critical security; update according to Microsoft Bulletin MS16-107.

Descripción: Summary:
This host is missing a critical security
update according to Microsoft Bulletin MS16-107.

Vulnerability Insight:
Multiple flaws exist as office software fails
to properly handle objects in memory.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to run arbitrary code in the context of the current user.

Affected Software/OS:
Microsoft Office Compatibility Pack Service Pack 3 and prior.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: BugTraq ID: 92796
BugTraq ID: 92791
BugTraq ID: 92795
BugTraq ID: 92785
BugTraq ID: 92903
Common Vulnerability Exposure (CVE) ID: CVE-2016-3360
http://www.securityfocus.com/bid/92796
Microsoft Security Bulletin: MS16-107
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-107
http://www.securitytracker.com/id/1036785
Common Vulnerability Exposure (CVE) ID: CVE-2016-3358
http://www.securityfocus.com/bid/92791
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1227
Common Vulnerability Exposure (CVE) ID: CVE-2016-3359
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1228
Common Vulnerability Exposure (CVE) ID: CVE-2016-3363
BugTraq ID: 92801
http://www.securityfocus.com/bid/92801
https://medium.com/@steventseeley/ms16-107-microsoft-office-excel-eof-record-type-confusion-remote-code-execution-vulnerability-1105d52764ff
Common Vulnerability Exposure (CVE) ID: CVE-2016-3362
BugTraq ID: 92799
http://www.securityfocus.com/bid/92799
Common Vulnerability Exposure (CVE) ID: CVE-2016-3381

Copyright Copyright (C) 2016 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.807365
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office Compatibility Pack Multiple RCE Vulnerabilities (3185852)
Resumen:	This host is missing a critical security; update according to Microsoft Bulletin MS16-107.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS16-107. Vulnerability Insight: Multiple flaws exist as office software fails to properly handle objects in memory. Vulnerability Impact: Successful exploitation will allow remote attackers to run arbitrary code in the context of the current user. Affected Software/OS: Microsoft Office Compatibility Pack Service Pack 3 and prior. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	BugTraq ID: 92796 BugTraq ID: 92791 BugTraq ID: 92795 BugTraq ID: 92785 BugTraq ID: 92903 Common Vulnerability Exposure (CVE) ID: CVE-2016-3360 http://www.securityfocus.com/bid/92796 Microsoft Security Bulletin: MS16-107 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-107 http://www.securitytracker.com/id/1036785 Common Vulnerability Exposure (CVE) ID: CVE-2016-3358 http://www.securityfocus.com/bid/92791 https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1227 Common Vulnerability Exposure (CVE) ID: CVE-2016-3359 https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1228 Common Vulnerability Exposure (CVE) ID: CVE-2016-3363 BugTraq ID: 92801 http://www.securityfocus.com/bid/92801 https://medium.com/@steventseeley/ms16-107-microsoft-office-excel-eof-record-type-confusion-remote-code-execution-vulnerability-1105d52764ff Common Vulnerability Exposure (CVE) ID: CVE-2016-3362 BugTraq ID: 92799 http://www.securityfocus.com/bid/92799 Common Vulnerability Exposure (CVE) ID: CVE-2016-3381
Copyright	Copyright (C) 2016 Greenbone Networks GmbH