9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.91 High
EPSS
Percentile
98.8%
05/12/2015
Critical
An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed document.
Office 2007 Service Pack 3
Office 2010 x86, x64 Service Pack 2
Office 2013 x86, x64, RT Service Pack 1
Office for Mac 2011
PoerPoint Viewer
SharePoint Server 2010 Service Pack 2
SharePoint Server 2013 Service Pack 1
Office Web Apps 2010 Service Pack 2
Office Web Apps 2013 Service Pack 1
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Microsoft bulletin
CVE-2015-1683
CVE-2015-1682
ACE
CVE-2015-16839.3Critical
CVE-2015-16829.3Critical
3017815
2956194
2999420
2965307
2965240
2975816
3039748
2956140
3057181
3039725
2965233
2956195
2965237
2999412
2956193
2965311
3023055
2975808
2965282
2965242
2986216
3062536
3039736
support.microsoft.com/kb/2956140
support.microsoft.com/kb/2956193
support.microsoft.com/kb/2956194
support.microsoft.com/kb/2956195
support.microsoft.com/kb/2965233
support.microsoft.com/kb/2965237
support.microsoft.com/kb/2965240
support.microsoft.com/kb/2965242
support.microsoft.com/kb/2965282
support.microsoft.com/kb/2965307
support.microsoft.com/kb/2965311
support.microsoft.com/kb/2975808
support.microsoft.com/kb/2975816
support.microsoft.com/kb/2986216
support.microsoft.com/kb/2999412
support.microsoft.com/kb/2999420
support.microsoft.com/kb/3017815
support.microsoft.com/kb/3023055
support.microsoft.com/kb/3039725
support.microsoft.com/kb/3039736
support.microsoft.com/kb/3039748
support.microsoft.com/kb/3057181
support.microsoft.com/kb/3062536
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1682
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1683
portal.msrc.microsoft.com/en-us/security-guidance
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2015-1682
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2015-1683
statistics.securelist.com/vulnerability-scan/month
technet.microsoft.com/en-us/library/security/ms15-046
threats.kaspersky.com/en/product/Microsoft-Office/
threats.kaspersky.com/en/product/Microsoft-Sharepoint-Server/