Kaspersky LabKLA10804KLA10804 Code execution vulnerabilities in Microsoft Office
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
98.0%
Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code.
Below is a complete list of vulnerabilities
- An improper memory objects handling can be exploited remotely via a specially designed content;
- An improper embedded fonts handling can be exploited remotely via a specially designed content.
Technical details
To mitigate vulnerability (2) user can prevent Office from opening RTF documents from unknown or untrusted sources or prevent Word from loading RTF documents. For further instructions take a look at original advisory listed below.
Original advisories
Related products
CVE list
CVE-2016-0183 critical
CVE-2016-0126 critical
CVE-2016-0140 critical
CVE-2016-0198 critical
KB list
Solution
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
- SB
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
- PE
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Affected Products
- Microsoft Office 2007 Service Pack 3Microsoft Office 2010 Service Pack 2Microsoft Office 2013 Service Pack 1Microsoft Office 2013 RT Service Pack 1Microsoft Office 2016Microsoft Word for Mac 2011Microsoft Word 2016 for MacMicrosoft Office Compatibility Pack Service Pack 3Microsoft Word ViewerWord Automation Services on Microsoft SharePoint Server 2010 Service Pack 2Microsoft Office Web Apps 2010 Service Pack 2
References
support.microsoft.com/kb/2984938
support.microsoft.com/kb/2984943
support.microsoft.com/kb/3054984
support.microsoft.com/kb/3101520
support.microsoft.com/kb/3114893
support.microsoft.com/kb/3115016
support.microsoft.com/kb/3115025
support.microsoft.com/kb/3115094
support.microsoft.com/kb/3115103
support.microsoft.com/kb/3115115
support.microsoft.com/kb/3115116
support.microsoft.com/kb/3115117
support.microsoft.com/kb/3115121
support.microsoft.com/kb/3115123
support.microsoft.com/kb/3115124
support.microsoft.com/kb/3115132
support.microsoft.com/kb/3115464
support.microsoft.com/kb/3115465
support.microsoft.com/kb/3115479
support.microsoft.com/kb/3115480
support.microsoft.com/kb/3155776
support.microsoft.com/kb/3155777
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0126
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0140
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0183
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0198
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Office/
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
98.0%