SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Microsoft Office Vendors:   Microsoft
Microsoft Office Multiple Flaws Let Remote Users Execute Arbitrary Code, Access Private Keys in Certain Cases, and Bypass Security Features
SecurityTracker Alert ID:  1036785
SecurityTracker URL:  http://securitytracker.com/id/1036785
CVE Reference:   CVE-2016-0137, CVE-2016-0141, CVE-2016-3357, CVE-2016-3358, CVE-2016-3359, CVE-2016-3360, CVE-2016-3361, CVE-2016-3362, CVE-2016-3363, CVE-2016-3364, CVE-2016-3365, CVE-2016-3366, CVE-2016-3381   (Links to External Site)
Date:  Sep 13 2016
Impact:   Disclosure of authentication information, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Office for Mac 2011; Office 2016 for Mac; Word Viewer
Description:   Multiple vulnerabilities were reported in Microsoft Office. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can bypass security controls on the target system. A remote user can obtain passwords on the target system.

A remote user can create a specially crafted file that, when loaded by the target user, will execute arbitrary code on the target system [CVE-2016-3357, CVE-2016-3358, CVE-2016-3359, CVE-2016-3360, CVE-2016-3361, CVE-2016-3362, CVE-2016-3363, CVE-2016-3364, CVE-2016-3365, CVE-2016-3381]. The code will run with the privileges of the target user.

A remote user can exploit an object memory handling flaw in the Click-to-Run (C2R) components to bypass Address Space Layout Randomization (ASLR) protection on the target system [CVE-2016-0137].

A remote user can create a specially crafted Visual Basic macro that, when run by the target user via Office when saving a document, will cause the target user's private key to be disclosed in the saved document [CVE-2016-0141].

A remote user can send a specially crafted email attachment to trigger an error in the parsing of RFC2046-specified MIME attachments and bypass anti-virus or anti-spam protections [CVE-2016-3366].

A researcher working with iDefense, Eduardo Braun Prado, Incident Response Team of Certego, Steven Seeley of Source Incite (via Trend Micro's Zero Day Initiative), Steven Vittitoe of Google Project Zero, and Udi Yavo of enSilo reported these vulnerabilities.

Impact:   A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.

A remote user can bypass ASLR protection on the target system.

A remote user may be able to obtain the target user's private key.

Solution:   The vendor has issued a fix.

Microsoft Office 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=32311a8f-aa2f-4cf2-b63c-f3911cba8eed

Microsoft Excel 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=a2d85409-5354-4fd2-ae8d-e6373a257601

Microsoft Outlook 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=ccb90af6-3a7f-4bd1-826f-dedb44c0bf0c

Microsoft PowerPoint 2007 Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=2f1203a1-3169-4e72-b58b-2e3acbd429b6

Microsoft Office 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=ca5536b1-a706-4694-b6bc-98ce162a1eb6

Microsoft Office 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=3abc23a3-ec3a-49c4-9e49-991c46c3c137

Microsoft Office 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=69df1aa9-59d5-46ed-9612-83a79ee946d7

Microsoft Office 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=62bd7753-0ae3-4230-a50d-dc6811f1379f

Microsoft Excel 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=58e515e7-80b4-4d54-882d-9a8e1bbfe16b

Microsoft Excel 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=47e85a73-6a22-41ad-aa4e-1a05a56318cb

Microsoft Outlook 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=9ab8897e-ec8d-47e8-b587-a96e45eeb2f3

Microsoft Outlook 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=fae9d8a5-78cc-4cfa-a5ce-6c556f1b5a76

Microsoft PowerPoint 2010 Service Pack 2 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=be4bafbe-2249-439c-b41d-30de85274ef6

Microsoft PowerPoint 2010 Service Pack 2 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=363f53ac-ba98-4187-9a35-03aa16c9cd15

Microsoft Office 2013 Service Pack 1 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=c582868a-0631-4bfd-ae12-adc54778fd25

Microsoft Office 2013 Service Pack 1 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=8e15cbb1-5400-463e-b38b-f0fbfc65b390

Microsoft Excel 2013 Service Pack 1 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=33f27a25-c07a-4f12-aa00-8bf507697b64

Microsoft Excel 2013 Service Pack 1 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=3b5af716-f051-442f-b103-cf3d14eedff6

Microsoft Outlook 2013 Service Pack 1 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=797da3d0-d337-4db5-a222-8baf48d11ab4

Microsoft Outlook 2013 Service Pack 1 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=6060baf6-8ac9-4555-9ccb-64705a9390a7

Microsoft PowerPoint 2013 Service Pack 1 (32-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=a75a9650-d15b-4059-984d-6a6b5226d116

Microsoft PowerPoint 2013 Service Pack 1 (64-bit editions):

https://www.microsoft.com/downloads/details.aspx?familyid=aae1c59c-0e55-4a19-9f4b-3b47c054613e

Microsoft Office 2016 (32-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=b50e8984-03e4-4803-8d1f-f7f7ddbedcee

Microsoft Office 2016 (64-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=66fb8f08-3170-4e72-b65c-4fdab2a214c5

Microsoft Excel 2016 (32-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=ecc2a97f-d86f-4d0d-9f59-99d092ae5acd

Microsoft Excel 2016 (64-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=ffb27d67-72cb-4407-af05-a24397f6a231

Microsoft Outlook 2016 (32-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=9bd8ac68-323b-43e6-8d18-b655d5788ba6

Microsoft Outlook 2016 (64-bit edition):

https://www.microsoft.com/downloads/details.aspx?familyid=51dc76b2-d841-4f91-b164-e76cab385355

Microsoft Office Compatibility Pack Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=98cf0432-8903-49bb-a529-79825d5cf405

Microsoft Office Compatibility Pack Service Pack 3:

https://www.microsoft.com/downloads/details.aspx?familyid=8207226e-8245-40a9-b543-3a8edd8f20db

Microsoft Excel Viewer:

https://www.microsoft.com/downloads/details.aspx?familyid=5f9c8db3-b4b5-4495-89c8-ee4862b7984d

Microsoft PowerPoint Viewer:

https://www.microsoft.com/downloads/details.aspx?familyid=6e15d728-e557-4a58-9379-256e239a17ac

Microsoft Word Viewer:

https://www.microsoft.com/downloads/details.aspx?familyid=1a1058d4-3c46-4d41-a43f-a59e1d551b79

The Microsoft advisory is available at:

https://technet.microsoft.com/library/security/ms16-107

Vendor URL:  technet.microsoft.com/library/security/ms16-107 (Links to External Site)
Cause:   Access control error
Underlying OS:  UNIX (macOS/OS X), Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC