MS14-023: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2961037)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote Windows host is affected by multiple vulnerabilities.

Description :

The remote Windows host is affected by multiple vulnerabilities :

- A vulnerability exists in the way that Windows loads
.dll files that could allow remote code execution if
a crafted .dll file is in the same directory as an
Office file being opened. When exploiting this
vulnerability, an attacker could gain the same user
permissions as the current user. (Proofing tools in
Office 2007 SP3, Office 2010 SP1/SP2 for Simplified
Chinese, Proofing tools in Office 2013 SP0/SP1)

- The remote Windows host is potentially affected by a
vulnerability in the way Office handles responses to
opening remote network Office files. When exploiting
this vulnerability, an attacker could gain the access
token used to authenticate the user on a Microsoft
online service. (Office 2013 SP0/SP1)

See also :

http://technet.microsoft.com/en-us/security/bulletin/ms14-023

Solution :

Microsoft has released a set of patches for Office 2007, 2010, 2013,
and 2013 RT.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.0
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 73982 ()

Bugtraq ID: 67274
67279

CVE ID: CVE-2014-1756
CVE-2014-1808