Windows : Microsoft Bulletins : Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Dec 2021)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.818929

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Dec 2021)

Zusammenfassung: This host is missing a critical security; update according to Microsoft Office Click-to-Run updates

Beschreibung: Summary:
This host is missing a critical security
update according to Microsoft Office Click-to-Run updates

Vulnerability Insight:
Multiple flaws exist due to:

- An information disclosure vulnerability in Visual Basic for Applications.

- A spoofing vulnerability in Microsoft Office Trust Center.

- A remote code execution vulnerability Microsoft Office Graphics.

- An elevation of privilege vulnerability in Microsoft Jet Red Database Engine and Access Connectivity Engine.

Vulnerability Impact:
Successful exploitation will allow an attacker
to elevate privileges, conduct spoofing attacks, disclose sensitive information
and conduct remote code execution.

Affected Software/OS:
Microsoft Office 365 (2016 Click-to-Run).

Solution:
The vendor has released updates. Please see
the references for more information.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2021-43256
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43256
Common Vulnerability Exposure (CVE) ID: CVE-2021-42293
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42293
Common Vulnerability Exposure (CVE) ID: CVE-2021-43875
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43875
Common Vulnerability Exposure (CVE) ID: CVE-2021-42295
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42295
Common Vulnerability Exposure (CVE) ID: CVE-2021-43255
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43255

Copyright Copyright (C) 2021 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.818929
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Dec 2021)
Zusammenfassung:	This host is missing a critical security; update according to Microsoft Office Click-to-Run updates
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft Office Click-to-Run updates Vulnerability Insight: Multiple flaws exist due to: - An information disclosure vulnerability in Visual Basic for Applications. - A spoofing vulnerability in Microsoft Office Trust Center. - A remote code execution vulnerability Microsoft Office Graphics. - An elevation of privilege vulnerability in Microsoft Jet Red Database Engine and Access Connectivity Engine. Vulnerability Impact: Successful exploitation will allow an attacker to elevate privileges, conduct spoofing attacks, disclose sensitive information and conduct remote code execution. Affected Software/OS: Microsoft Office 365 (2016 Click-to-Run). Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-43256 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43256 Common Vulnerability Exposure (CVE) ID: CVE-2021-42293 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42293 Common Vulnerability Exposure (CVE) ID: CVE-2021-43875 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43875 Common Vulnerability Exposure (CVE) ID: CVE-2021-42295 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42295 Common Vulnerability Exposure (CVE) ID: CVE-2021-43255 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43255
Copyright	Copyright (C) 2021 Greenbone AG