Test ID:	1.3.6.1.4.1.25623.1.0.832225
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Jul 2023)
Summary:	This host is missing a critical security; update according to Microsoft Office Click-to-Run update July 2023
Description:	Summary: This host is missing a critical security update according to Microsoft Office Click-to-Run update July 2023 Vulnerability Insight: Multiple flaws exist due to, - Microsoft Excel Information Disclosure and Remote Code Execution Vulnerabilities. - Microsoft Outlook Security Feature Bypass, Spoofing and Remote Code Execution Vulnerabilities. - Microsoft Office Elevation of Privilege Vulnerability. - Microsoft ActiveX Remote Code Execution Vulnerability. - Microsoft Office Graphics Remote Code Execution Vulnerability. Vulnerability Impact: Successful exploitation would allow an attacker to conduct remote code execution, spoofing, disclose sensitive information, elevate privileges and bypass security restrictions on an affected system. Affected Software/OS: Microsoft Office 365 (2016 Click-to-Run). Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-33161 Microsoft Excel Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33161 Common Vulnerability Exposure (CVE) ID: CVE-2023-33162 Microsoft Excel Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33162 Common Vulnerability Exposure (CVE) ID: CVE-2023-33158 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33158 Common Vulnerability Exposure (CVE) ID: CVE-2023-35311 Microsoft Outlook Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35311 Common Vulnerability Exposure (CVE) ID: CVE-2023-33151 Microsoft Outlook Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33151 Common Vulnerability Exposure (CVE) ID: CVE-2023-33148 Microsoft Office Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33148 http://packetstormsecurity.com/files/173591/Microsoft-Office-365-18.2305.1222.0-Remote-Code-Execution.html Common Vulnerability Exposure (CVE) ID: CVE-2023-33149 Microsoft Office Graphics Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33149 Common Vulnerability Exposure (CVE) ID: CVE-2023-33150 Microsoft Office Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33150 Common Vulnerability Exposure (CVE) ID: CVE-2023-33152 Microsoft ActiveX Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33152 Common Vulnerability Exposure (CVE) ID: CVE-2023-33153 Microsoft Outlook Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33153
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.