Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2016 Greenbone AGOPENVAS:1361412562310809716
HistoryNov 09, 2016 - 12:00 a.m.

Microsoft Office Excel Multiple RCE Vulnerabilities (3199168)

2016-11-0900:00:00
Copyright (C) 2016 Greenbone AG
plugins.openvas.org
26

7.5 High

AI Score

Confidence

High

0.7 High

EPSS

Percentile

98.0%

JSON

This host is missing an important security
update according to Microsoft Bulletin MS16-133.

# SPDX-FileCopyrightText: 2016 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.809716");
  script_version("2023-07-21T05:05:22+0000");
  script_cve_id("CVE-2016-7213", "CVE-2016-7228", "CVE-2016-7229", "CVE-2016-7231",
                "CVE-2016-7236");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2023-07-21 05:05:22 +0000 (Fri, 21 Jul 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2018-10-12 22:14:00 +0000 (Fri, 12 Oct 2018)");
  script_tag(name:"creation_date", value:"2016-11-09 10:02:12 +0530 (Wed, 09 Nov 2016)");
  script_tag(name:"qod_type", value:"executable_version");
  script_name("Microsoft Office Excel Multiple RCE Vulnerabilities (3199168)");

  script_tag(name:"summary", value:"This host is missing an important security
  update according to Microsoft Bulletin MS16-133.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist as Office software
  fails to properly handle objects in memory.");

  script_tag(name:"impact", value:"Successful exploitation will allow remote
  attackers to run arbitrary code in the context of the current user.");

  script_tag(name:"affected", value:"- Microsoft Excel 2007 Service Pack 3

  - Microsoft Excel 2010 Service Pack 2

  - Microsoft Excel 2013 Service Pack 1

  - Microsoft Excel 2016 Service Pack 1");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");

  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3118395");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93993");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93994");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93995");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93996");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/94025");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3118390");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3127904");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3127921");
  script_xref(name:"URL", value:"https://technet.microsoft.com/library/security/MS16-133");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2016 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("secpod_office_products_version_900032.nasl");
  script_mandatory_keys("SMB/Office/Excel/Version");
  exit(0);
}


include("smb_nt.inc");
include("version_func.inc");

excelVer = get_kb_item("SMB/Office/Excel/Version");
if(!excelVer){
  exit(0);
}

excelPath = get_kb_item("SMB/Office/Excel/Install/Path");
if(!excelPath){
   excelPath = "Unable to fetch the install path";
}

if(excelVer =~ "^(12|14|15|16)\..*")
{
  if(excelVer =~ "^12"){
    Vulnerable_range  =  "12 - 12.0.6759.4999";
  }
  else if(excelVer =~ "^14"){
    Vulnerable_range  =  "14 - 14.0.7176.4999";
  }
  else if(excelVer =~ "^15"){
   Vulnerable_range  =  "15 - 15.0.4875.0999";
  }
  else if(excelVer =~ "^16"){
   Vulnerable_range  =  "16 - 16.0.4456.1002";
  }

  if(version_in_range(version:excelVer, test_version:"12.0", test_version2:"12.0.6759.4999") ||
     version_in_range(version:excelVer, test_version:"14.0", test_version2:"14.0.7176.4999") ||
     version_in_range(version:excelVer, test_version:"15.0", test_version2:"15.0.4875.0999") ||
     version_in_range(version:excelVer, test_version:"16.0", test_version2:"16.0.4456.1002"))
  {
    report = 'File checked:     ' + excelPath + "Excel.exe" + '\n' +
             'File version:     ' + excelVer  + '\n' +
             'Vulnerable range: ' + Vulnerable_range + '\n' ;
    security_message(data:report);
    exit(0);
  }
}

Related

mskb 10
openvas 4
nessus 2
kaspersky 1
symantec 5
mscve 5
prion 5
cve 5
cvelist 5
checkpoint_advisories 4
mskb
mskb
Security update 2016-11-08
2016-11-08 08:00:00
Security update 2016-11-08
2016-11-08 08:00:00
MS16-133: Description of the security update for Excel 2010: November 8, 2016
2016-11-08 08:00:00
openvas
openvas
Microsoft Office Multiple Remote Code Execution Vulnerabilities (3199168) - Mac OS X
2016-11-17 00:00:00
Microsoft Windows Excel Viewer Multiple Remote Code Execution Vulnerabilities (3199168)
2016-11-09 00:00:00
Microsoft Office Compatibility Pack Multiple Vulnerabilities (3199168)
2016-11-09 00:00:00
nessus
nessus
MS16-133: Security Update for Microsoft Office (3199168) (macOS)
2016-11-16 00:00:00
MS16-133: Security Update for Microsoft Office (3199168)
2016-11-08 00:00:00
kaspersky
kaspersky
KLA10902 Multiple vulnerabilities in Microsoft Office
2016-11-08 00:00:00
symantec
symantec
Microsoft Office CVE-2016-7229 Memory Corruption Vulnerability
2016-11-08 00:00:00
Microsoft Office CVE-2016-7231 Memory Corruption Vulnerability
2016-11-08 00:00:00
Microsoft Office CVE-2016-7213 Memory Corruption Vulnerability
2016-11-08 00:00:00
mscve
mscve
Microsoft Office Memory Corruption Vulnerability
2016-11-08 08:00:00
Microsoft Office Memory Corruption Vulnerability
2016-11-08 08:00:00
Microsoft Office Memory Corruption Vulnerability
2016-11-08 08:00:00
prion
prion
Memory corruption
2016-11-10 06:59:00
Memory corruption
2016-11-10 06:59:00
Memory corruption
2016-11-10 06:59:00
cve
cve
CVE-2016-7229
2016-11-10 06:59:00
CVE-2016-7231
2016-11-10 06:59:00
CVE-2016-7236
2016-11-10 06:59:00
cvelist
cvelist
CVE-2016-7229
2016-11-10 06:16:00
CVE-2016-7231
2016-11-10 06:16:00
CVE-2016-7213
2016-11-10 06:16:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Memory Corruption (MS16-133: CVE-2016-7231)
2016-11-08 00:00:00
Microsoft Office Memory Corruption (MS16-133: CVE-2016-7213)
2016-11-08 00:00:00
Microsoft Office Memory Corruption (MS16-133: CVE-2016-7236)
2016-11-08 00:00:00

7.5 High

AI Score

Confidence

High

0.7 High

EPSS

Percentile

98.0%

JSON
Related for OPENVAS:1361412562310809716
mskb10openvas4nessus2kaspersky1symantec5mscve5prion5cve5cvelist5checkpoint_advisories4