Test ID:	1.3.6.1.4.1.25623.1.0.805057
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Office Word Remote Code Execution Vulnerabilities (3038999)
Summary:	This host is missing a critical security; update according to Microsoft Bulletin MS15-022.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS15-022. Vulnerability Insight: Multiple flaws are exists when, - The Office software improperly handles objects in memory while parsing specially crafted Office files. - The Office software fails to properly handle rich text format files in memory. Vulnerability Impact: Successful exploitation will allow remote attackers to run arbitrary code in the context of the current user and to perform actions in the security context of the current user. Affected Software/OS: - Microsoft Word 2010 - Microsoft Word 2013 and - Microsoft Word 2007 Service Pack 3 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-0085 Microsoft Security Bulletin: MS15-022 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-022 http://www.securitytracker.com/id/1031896 Common Vulnerability Exposure (CVE) ID: CVE-2015-0086 Common Vulnerability Exposure (CVE) ID: CVE-2015-0097 https://www.exploit-db.com/exploits/37657/
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.