Windows : Microsoft Bulletins : Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Dec 2018)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.814710

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Dec 2018)

Zusammenfassung: This host is missing an important security; update according to Microsoft Office Click-to-Run updates.

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft Office Click-to-Run updates.

Vulnerability Insight:
Multiple flaws exist due to:

- Multiple errors in Microsoft Excel because it fails to properly handle objects in memory.

- An error when Microsoft Excel improperly discloses the contents of its memory.

- An error when Microsoft Excel software reads out of bound memory due to an
uninitialized variable.

- An error in Microsoft Outlook software when it fails to properly handle objects
in memory.

- An error in Microsoft PowerPoint because it fails to properly handle objects in memory.

Vulnerability Impact:
Successful exploitation will allow an attacker
to run arbitrary code in the context of the current user and gain access to
sensitive information.

Affected Software/OS:
Microsoft Office 365 (2016 Click-to-Run).

Solution:
Upgrade to latest version of Microsoft Office
365 (2016 Click-to-Run) with respect to update channel used. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2018-8597
BugTraq ID: 106100
http://www.securityfocus.com/bid/106100
Common Vulnerability Exposure (CVE) ID: CVE-2018-8598
BugTraq ID: 106102
http://www.securityfocus.com/bid/106102
Common Vulnerability Exposure (CVE) ID: CVE-2018-8627
BugTraq ID: 106120
http://www.securityfocus.com/bid/106120
Common Vulnerability Exposure (CVE) ID: CVE-2018-8636
BugTraq ID: 106101
http://www.securityfocus.com/bid/106101
Common Vulnerability Exposure (CVE) ID: CVE-2018-8587
BugTraq ID: 106097
http://www.securityfocus.com/bid/106097
Common Vulnerability Exposure (CVE) ID: CVE-2018-8628
BugTraq ID: 106104
http://www.securityfocus.com/bid/106104

Copyright Copyright (C) 2018 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.814710
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Dec 2018)
Zusammenfassung:	This host is missing an important security; update according to Microsoft Office Click-to-Run updates.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Office Click-to-Run updates. Vulnerability Insight: Multiple flaws exist due to: - Multiple errors in Microsoft Excel because it fails to properly handle objects in memory. - An error when Microsoft Excel improperly discloses the contents of its memory. - An error when Microsoft Excel software reads out of bound memory due to an uninitialized variable. - An error in Microsoft Outlook software when it fails to properly handle objects in memory. - An error in Microsoft PowerPoint because it fails to properly handle objects in memory. Vulnerability Impact: Successful exploitation will allow an attacker to run arbitrary code in the context of the current user and gain access to sensitive information. Affected Software/OS: Microsoft Office 365 (2016 Click-to-Run). Solution: Upgrade to latest version of Microsoft Office 365 (2016 Click-to-Run) with respect to update channel used. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-8597 BugTraq ID: 106100 http://www.securityfocus.com/bid/106100 Common Vulnerability Exposure (CVE) ID: CVE-2018-8598 BugTraq ID: 106102 http://www.securityfocus.com/bid/106102 Common Vulnerability Exposure (CVE) ID: CVE-2018-8627 BugTraq ID: 106120 http://www.securityfocus.com/bid/106120 Common Vulnerability Exposure (CVE) ID: CVE-2018-8636 BugTraq ID: 106101 http://www.securityfocus.com/bid/106101 Common Vulnerability Exposure (CVE) ID: CVE-2018-8587 BugTraq ID: 106097 http://www.securityfocus.com/bid/106097 Common Vulnerability Exposure (CVE) ID: CVE-2018-8628 BugTraq ID: 106104 http://www.securityfocus.com/bid/106104
Copyright	Copyright (C) 2018 Greenbone AG