Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10785
HistoryApr 12, 2016 - 12:00 a.m.

KLA10785 Code execution vulnerability in Microsoft Office

2016-04-1200:00:00
Kaspersky Lab
threats.kaspersky.com
48

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.798 High

EPSS

Percentile

98.3%

JSON

Multiple unspecified vulnerabilities was found in Microsoft Office. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content.

Technical details

You can mitigate this vulnerability via using Microsoft Office File Block Policy. For further details look at original advisory listed below.

Original advisories

CVE-2016-0145

CVE-2016-0136

CVE-2016-0139

CVE-2016-0122

CVE-2016-0127

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

Microsoft-Office

CVE list

CVE-2016-0145 critical

CVE-2016-0136 critical

CVE-2016-0139 critical

CVE-2016-0122 critical

CVE-2016-0127 critical

KB list

3114994

3114927

3114937

3154208

3142577

3114895

3114987

3114934

3114898

3114888

3114982

3114983

3114871

3114988

3114947

3114892

3114964

3114993

3114897

3114990

3114960

3114985

3114566

3144429

3114944

3144432

3144427

3144428

3114542

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

  • SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

  • PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

Affected Products

  • Microsoft Office 2007 Service Pack 3Microsoft Office 2010 Service Pack 2Microsoft Office 2013 Service Pack 1Microsoft Office 2013 RT Service Pack 1Microsoft Office 2016Microsoft Office for Mac 2011Microsoft Office 2016 for MacMicrosoft Office Compatibility Pack Service Pack 3Microsoft Excel Viewer and Word ViewerMicrosoft SharePoint Server 2007 Service Pack 3Microsoft SharePoint Server 2010 Service Pack 2Microsoft SharePoint Server 2013 Service Pack 1Microsoft Office Web Apps 2010Microsoft Office Web Apps 2013

References

Related

mskb 38
nessus 3
openvas 14
prion 5
symantec 5
checkpoint_advisories 5
zdt 2
mscve 5
srcincite 1
cvelist 5
nvd 5
cve 5
exploitpack 1
exploitdb 1
kaspersky 5
mskb
mskb
MS16-042: Security update for Microsoft Office: April 12, 2016
2016-04-12 00:00:00
MS16-042: Description of the security update for Excel 2010: April 12, 2016
2016-04-12 07:00:00
Security update 2016-04-12
2016-04-12 07:00:00
nessus
nessus
MS16-042: Security Update for Microsoft Office (3148775)
2016-04-12 00:00:00
MS16-042: Security Update for Microsoft Office (3148775) (Mac OS X)
2016-04-12 00:00:00
MS16-039: Security Update for Microsoft Graphics Component (3148522)
2016-04-12 00:00:00
openvas
openvas
Microsoft Office Excel Remote Code Execution Vulnerabilities (3148775)
2016-04-13 00:00:00
Microsoft Office Multiple Remote Code Execution Vulnerabilities (3148775) - Mac OS X
2016-04-13 00:00:00
Microsoft Windows Excel Viewer Remote Code Execution Vulnerabilities (3148775)
2016-04-13 00:00:00
prion
prion
Memory corruption
2016-04-12 23:59:00
Memory corruption
2016-04-12 23:59:00
Memory corruption
2016-04-12 23:59:00
symantec
symantec
Microsoft Office CVE-2016-0139 Memory Corruption Vulnerability
2016-04-12 00:00:00
Microsoft Office CVE-2016-0127 Memory Corruption Vulnerability
2016-04-12 00:00:00
Microsoft Windows Graphics Component CVE-2016-0145 Memory Corruption Vulnerability
2016-04-12 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Memory Corruption (MS16-042: CVE-2016-0122)
2016-04-12 00:00:00
Microsoft Office Memory Corruption (MS16-042: CVE-2016-0127)
2016-04-12 00:00:00
Microsoft Windows Graphics Memory Corruption (MS16-039: CVE-2016-0145)
2016-04-12 00:00:00
zdt
zdt
Microsoft Excel - Out-of-Bounds Read Remote Code Execution (MS16-042)
2016-04-14 00:00:00
Microsoft Windows - Kernel win32k.sys TTF Processing EBLC / EBSC Tables Pool Corruption (MS16-039)
2016-04-28 00:00:00
mscve
mscve
Microsoft Office Remote Code Execution Vulnerability
2016-04-12 07:00:00
Microsoft Office Remote Code Execution Vulnerability
2016-04-12 07:00:00
GDI+ Remote Code Execution Vulnerability
2016-04-12 07:00:00
srcincite
srcincite
SRC-2016-0021 : Microsoft Office Excel BIFFRecord Length Out-of-Bounds Read Remote Code Execution Vulnerability
2016-01-19 00:00:00
cvelist
cvelist
CVE-2016-0122
2016-04-12 23:00:00
CVE-2016-0139
2016-04-12 23:00:00
CVE-2016-0136
2016-04-12 23:00:00
nvd
nvd
CVE-2016-0122
2016-04-12 23:59:04
CVE-2016-0139
2016-04-12 23:59:09
CVE-2016-0127
2016-04-12 23:59:05
cve
cve
CVE-2016-0139
2016-04-12 23:59:09
CVE-2016-0122
2016-04-12 23:59:04
CVE-2016-0145
2016-04-12 23:59:11
exploitpack
exploitpack
Microsoft Excel - Out-of-Bounds Read Code Execution (MS16-042)
2016-04-14 00:00:00
exploitdb
exploitdb
Microsoft Excel - Out-of-Bounds Read Code Execution (MS16-042)
2016-04-14 00:00:00
kaspersky
kaspersky
KLA10786 Code execution vulnerabilities in Microsoft Developer Tools
2016-04-12 00:00:00
KLA10788 Multiple vulnerabilities in Microsoft Graphics Component
2016-04-12 00:00:00
KLA11915 Multiple vulnerabilities in Microsoft Products (ESU)
2017-04-12 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.798 High

EPSS

Percentile

98.3%

JSON
Related for KLA10785
mskb38nessus3openvas14prion5symantec5checkpoint_advisories5zdt2mscve5srcincite1cvelist5nvd5cve5exploitpack1exploitdb1kaspersky5