SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Microsoft Office Vendors:   Microsoft
Microsoft Office Bugs Let Remote Users Execute Arbitrary Code and Obtain Potentially Sensitive Information and Let Local Users Gain Elevated Privileges
SecurityTracker Alert ID:  1036093
SecurityTracker URL:  http://securitytracker.com/id/1036093
CVE Reference:   CVE-2016-0025, CVE-2016-3233, CVE-2016-3234, CVE-2016-3235   (Links to External Site)
Date:  Jun 14 2016
Impact:   Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via local system, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2007, 2010, 2013, 2013 RT, 2016; Office for Mac 2011, Office 2016 for Mac
Description:   Several vulnerabilities were reported in Microsoft Office. A remote user can cause arbitrary code to be executed on the target user's system. A local user can obtain elevated privileges on the target system. A remote user can obtain potentially sensitive information on the target system.

A remote user can create a specially crafted Office file that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary code on the target system [CVE-2016-0025, CVE-2016-3233]. The code will run with the privileges of the target user.

A remote user can create a specially crafted Office file that, when loaded by the target user, will access potentially sensitive information from memory on the target system [CVE-2016-3234].

A local user can trigger an Office OLE DLL loading error to execute arbitrary code on the target system with elevated privileges [CVE-2016-3235].

Dhanesh Kizhakkinan of FireEye Inc, LiYaDong of 360 QEX Team, and YangKang of 360 QEX Team reported these vulnerabilities.

Impact:   A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.

A local user can obtain elevated privileges on the target system.

A remote user can obtain potentially sensitive information on the target system.

Solution:   The vendor has issued a fix.

Microsoft Excel 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=76da419e-c37c-44c3-b0d1-a7a6ad1aaefe

Microsoft Visio 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=7ffccc78-e24d-4469-8840-cbe5e3215ce8

Microsoft Word 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=3ff7dadf-84e3-42ae-b117-5cf6d9995263

Microsoft Office 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=bd7589dc-d229-4a8c-a4c1-e0c13630fdf8

Microsoft Office 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=d6013d7b-a0ba-4d9a-b31d-cabcb49d10b1

Microsoft Excel 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=76bd3f95-daa0-4256-a555-f912d8fa9a59

Microsoft Excel 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=d0c21c8e-0c5f-4cf8-b01e-fe2f18a15564

Microsoft Visio 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=db9aaa4b-23dd-4747-8495-cc01ad1ca461

Microsoft Visio 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=1587401f-9283-458b-b6e2-657e904d4b69

Microsoft Word 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=150d0f05-d3d3-4145-8bcf-cdf60bd34506

Microsoft Word 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=0dbd0d47-4e0b-4598-af52-84ebed1ffce6

Microsoft Visio 2013 Service Pack 1 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=9d4d4ed8-a123-4906-8d24-047208369a47

Microsoft Visio 2013 Service Pack 1 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=34fe6d0d-6b74-45a0-b86e-adb5933b9dc0

Microsoft Word 2013 Service Pack 1 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=c0cd107a-4808-448b-8592-36d039b811f7

Microsoft Word 2013 Service Pack 1 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=f13fc7ed-2f11-48cd-be0d-9a6fec0878ac

Microsoft Office 2016 (32-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=27c0d44d-cd7a-4722-b58d-4d63a9a4bc0e

Microsoft Office 2016 (64-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=38851be9-b38a-4f62-b6e1-765c1f83d34d

Microsoft Visio 2016 (32-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=876a7a9b-9a83-4a71-9761-ff815e83bea8

Microsoft Visio 2016 (64-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=8c81bdb7-58cb-4a0c-aa21-6311babcf17d

Microsoft Word 2016 (32-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=487ef765-33f6-495f-a947-22cdd90ae64e

Microsoft Word 2016 (64-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=81c901f1-28de-4253-b128-f4142fd707b3

Microsoft Office Compatibility Pack Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=4c04db0d-7fda-4152-abc0-0e16b3810702

Microsoft Office Compatibility Pack Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=0283d351-1a65-4825-a0d8-6470321b7c64

Microsoft Word Viewer:

https://www.microsoft.com/downloads/details.aspx?familyid=74c7b4c9-5b54-41d6-b661-b65f5bc1f155

Microsoft Visio Viewer 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=2f542651-1275-4d04-a399-be826df4b888

Microsoft Visio Viewer 2010 (32-bit Edition):

https://www.microsoft.com/downloads/details.aspx?familyid=b6ba875f-21cd-4992-98cd-5fbfc9fedd29

Microsoft Visio Viewer 2010 (64-bit Edition):

https://www.microsoft.com/downloads/details.aspx?familyid=4ba69057-e474-4468-9dfa-491c56ccb9f0

The Microsoft advisory is available at:

https://technet.microsoft.com/library/security/ms16-070

Vendor URL:  technet.microsoft.com/library/security/ms16-070 (Links to External Site)
Cause:   Access control error
Underlying OS:  UNIX (macOS/OS X), Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC