Windows : Microsoft Bulletins : Microsoft Office Web Apps Multiple Vulnerabilities (3199168)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.809726

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Office Web Apps Multiple Vulnerabilities (3199168)

Zusammenfassung: This host is missing an important security; update according to Microsoft Bulletin MS16-133

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft Bulletin MS16-133

Vulnerability Insight:
The flaw exists as,

- Office software fails to properly handle objects in memory.

- Office or Word reads out of bound memory due to an uninitialized variable.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to execute arbitrary code in the context of the currently logged-in
user and gain access to potentially sensitive information.

Affected Software/OS:
- Microsoft Office Web Apps 2010 Service Pack 2 and prior

- Microsoft Office Web Apps Server 2013 Service Pack 1 and prior

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2016-7230
BugTraq ID: 94006
http://www.securityfocus.com/bid/94006
Microsoft Security Bulletin: MS16-133
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-133
http://www.securitytracker.com/id/1037246
Common Vulnerability Exposure (CVE) ID: CVE-2016-7233
BugTraq ID: 94031
http://www.securityfocus.com/bid/94031
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1232
Common Vulnerability Exposure (CVE) ID: CVE-2016-7234
BugTraq ID: 94020
http://www.securityfocus.com/bid/94020
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1233

Copyright Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.809726
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Office Web Apps Multiple Vulnerabilities (3199168)
Zusammenfassung:	This host is missing an important security; update according to Microsoft Bulletin MS16-133
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Bulletin MS16-133 Vulnerability Insight: The flaw exists as, - Office software fails to properly handle objects in memory. - Office or Word reads out of bound memory due to an uninitialized variable. Vulnerability Impact: Successful exploitation will allow remote attackers to execute arbitrary code in the context of the currently logged-in user and gain access to potentially sensitive information. Affected Software/OS: - Microsoft Office Web Apps 2010 Service Pack 2 and prior - Microsoft Office Web Apps Server 2013 Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7230 BugTraq ID: 94006 http://www.securityfocus.com/bid/94006 Microsoft Security Bulletin: MS16-133 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-133 http://www.securitytracker.com/id/1037246 Common Vulnerability Exposure (CVE) ID: CVE-2016-7233 BugTraq ID: 94031 http://www.securityfocus.com/bid/94031 https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1232 Common Vulnerability Exposure (CVE) ID: CVE-2016-7234 BugTraq ID: 94020 http://www.securityfocus.com/bid/94020 https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1233
Copyright	Copyright (C) 2016 Greenbone AG