Windows : Microsoft Bulletins : Microsoft Office 2016 Click-to-Run (C2R) Multiple Vulnerabilities (Aug 2018)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.813780

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Office 2016 Click-to-Run (C2R) Multiple Vulnerabilities (Aug 2018)

Zusammenfassung: This host is missing an important security; update according to Microsoft Office Click-to-Run updates.

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft Office Click-to-Run updates.

Vulnerability Insight:
Multiple flaws exist due to:

- An error when Microsoft Access fails to properly handle objects in memory.

- Multiple errors when Microsoft Excel software fails to properly handle objects in memory.

- An error when Microsoft Excel improperly discloses the contents of its memory.

- An error when Microsoft Office software reads out of bound memory due to an
uninitialized variable

- Missing update for Microsoft Office that provides enhanced security as a
defense-in-depth measure.

Vulnerability Impact:
Successful exploitation will allow an attacker
to run arbitrary code in the context of the current user, gain access to
potentially sensitive information and gain elevated privileges.

Affected Software/OS:
Microsoft Office 2016 Click-to-Run.

Solution:
Upgrade to latest version of Microsoft Office
2016 Click-to-Run with respect to update channel used. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2018-8312
BugTraq ID: 104645
http://www.securityfocus.com/bid/104645
http://www.securitytracker.com/id/1041254
Common Vulnerability Exposure (CVE) ID: CVE-2018-8375
BugTraq ID: 104989
http://www.securityfocus.com/bid/104989
http://www.securitytracker.com/id/1041463
Common Vulnerability Exposure (CVE) ID: CVE-2018-8379
BugTraq ID: 104997
http://www.securityfocus.com/bid/104997
Common Vulnerability Exposure (CVE) ID: CVE-2018-8382
BugTraq ID: 105000
http://www.securityfocus.com/bid/105000

Copyright Copyright (C) 2018 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.813780
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Office 2016 Click-to-Run (C2R) Multiple Vulnerabilities (Aug 2018)
Zusammenfassung:	This host is missing an important security; update according to Microsoft Office Click-to-Run updates.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Office Click-to-Run updates. Vulnerability Insight: Multiple flaws exist due to: - An error when Microsoft Access fails to properly handle objects in memory. - Multiple errors when Microsoft Excel software fails to properly handle objects in memory. - An error when Microsoft Excel improperly discloses the contents of its memory. - An error when Microsoft Office software reads out of bound memory due to an uninitialized variable - Missing update for Microsoft Office that provides enhanced security as a defense-in-depth measure. Vulnerability Impact: Successful exploitation will allow an attacker to run arbitrary code in the context of the current user, gain access to potentially sensitive information and gain elevated privileges. Affected Software/OS: Microsoft Office 2016 Click-to-Run. Solution: Upgrade to latest version of Microsoft Office 2016 Click-to-Run with respect to update channel used. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-8312 BugTraq ID: 104645 http://www.securityfocus.com/bid/104645 http://www.securitytracker.com/id/1041254 Common Vulnerability Exposure (CVE) ID: CVE-2018-8375 BugTraq ID: 104989 http://www.securityfocus.com/bid/104989 http://www.securitytracker.com/id/1041463 Common Vulnerability Exposure (CVE) ID: CVE-2018-8379 BugTraq ID: 104997 http://www.securityfocus.com/bid/104997 Common Vulnerability Exposure (CVE) ID: CVE-2018-8382 BugTraq ID: 105000 http://www.securityfocus.com/bid/105000
Copyright	Copyright (C) 2018 Greenbone AG