KLA10754
Multiple vulnerabilities in Microsoft Office
Updated: 05/22/2020
Detect date
?
02/09/2016
Severity
?
High
Description

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privileges.

Below is a complete list of vulnerabilities

  1. An improper memory objects handling can be exploited remotely via a specially designed content to execute arbitrary code;
  2. An improper requests sanitization at SharePoint Server can be exploited remotely via a specially designed request to gain privileges.
Affected products

Microsoft Office 2007 Service Pack 3
Microsoft Office 2010 Service Pack 2
Microsoft Office 2013 Service Pack 1
Microsoft Office 2013 RT Service Pack 1
Microsoft Office 2016
Microsoft Office for Mac 2011
Microsoft Office 2016 for Mac
Microsoft Office Compatibility Pack Service Pack 3
Microsoft Word & Excel Viewers
Microsoft SharePoint Server 2007 Service Pack 3 Excel Services
Microsoft SharePoint Server 2010 Service Pack 2 Excel Services
Microsoft SharePoint Server 2013 Service Pack 1
Microsoft Office Web Apps 2010 Service Pack 2
Microsoft Office Web Apps Server 2013 Service Pack 1
Microsoft SharePoint Foundation 2013 Service Pack 1

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2016-0022
CVE-2016-0052
CVE-2016-0055
CVE-2016-0056
CVE-2016-0039
CVE-2016-0054
CVE-2016-0053

Impacts
?
ACE 
[?]

PE 
[?]
Related products
Microsoft Office
CVE-IDS
?
CVE-2016-00229.3Critical
CVE-2016-00529.3Critical
CVE-2016-00559.3Critical
CVE-2016-00569.3Critical
CVE-2016-00394.3Warning
CVE-2016-00549.3Critical
CVE-2016-00539.3Critical
Microsoft official advisories
Microsoft Security Update Guide
KB list

3114432
3114724
3137721
3114335
3114702
3114742
3114741
3114747
3114745
3114755
3114773
3114698
3114338
3039768
3114548
3114733
3114407
3114401
3114734
3114759
3114752
3134241
3134226
3114481
3114748