4 matches found
MS16-121: Security Update for Microsoft Office (3194063)
The Microsoft Office application installed on the remote Windows host is missing a security update. It is, therefore, affected by a remote code execution vulnerability due to improper handling of RTF files. An unauthenticated, remote attacker can exploit this by convincing a user to open a...
Microsoft Office Compatibility Pack Remote Code Execution Vulnerability (3194063)
This host is missing an important security update according to Microsoft Bulletin MS16-121 SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Patches Five Zero Days Under Attack
Update: Microsoft today said it mislabeled CVE-2016-7189 in bulletin MS16-119 as exploited. “There is no evidence of any active attacks using this vulnerability and the bulletin text has been corrected.” – a Microsoft spokesperson said. Microsoft today patched a handful of zero-day vulnerabilitie...
Microsoft Office Memory Corruption (MS16-121: CVE-2016-7193)
A buffer overflow vulnerability exists in the Word's RTF parser. The vulnerability is due to invalid parsing of RTF files. By enticing the user to open a specially crafted RTF file, an attacker could exploit this vulnerability to execute arbitrary code on the affected system...