KLA10939
Arbitrary code execution vulnerability in Microsoft Office Word 2016 and Microsoft SharePoint Enterprise Server 2016
Updated: 06/01/2019
Detect date
?
01/10/2017
Severity
?
Critical
Description

Memory corruption vulnerability was found in Microsoft Word 2016 and Microsoft SharePoint Enterprise Server 2016. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed document.

Affected products

Microsoft Word 2016
Microsoft SharePoint Enterprise Server 2016

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

MS17-002
CVE-2017-0003

Impacts
?
ACE 
[?]
Related products
Microsoft Word
Microsoft Sharepoint Server
CVE-IDS
?
CVE-2017-00039.3Critical
Microsoft official advisories
Microsoft Security Update Guide
KB list

3128057
3141486