Security Update for Microsoft Office Products (May 2017)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

An application installed on the remote Windows host is affected by
multiple vulnerabilities.

Description :

The Microsoft Office application, Office Web Apps, or SharePoint
Server installed on the remote Windows host is missing a security
update. It is, therefore, affected by multiple vulnerabilities :

- A remote code execution vulnerability exists in
Microsoft Office software due to improper handling of
objects in memory. An unauthenticated, remote attacker
can exploit this, by convincing a user to open a
specially crafted Office document, to execute arbitrary
code in the context of the current user. (CVE-2017-0254)

- A cross-site scripting (XSS) vulnerability exists in
Microsoft SharePoint Server due improper validation of
user-supplied input in web requests. An unauthenticated,
remote attacker can exploit this, via a specially
crafted request, to execute arbitrary script code in a
user's browser session. (CVE-2017-0255)

- A remote code execution vulnerability exists in
Microsoft Office due to improper handling of malformed
graphics images. An unauthenticated, remote attacker can
exploit this, by convincing a user to open a specially
crafted EPS file, to execute arbitrary code in the
context of the current user. (CVE-2017-0261)

- A remote code execution vulnerability exists in
Microsoft Office when handling malformed graphics
images. An unauthenticated, remote attacker can exploit
this, by convincing a user to open a specially crafted
EPS file or visit a specially crafted website, to
execute arbitrary code. (CVE-2017-0262)

- A remote code execution vulnerability exists in
Microsoft Office due to improper handling of objects in
memory. An unauthenticated, remote attacker can exploit
this, by convincing a user to open a specially crafted
file, to execute arbitrary code in the context of the
current user. (CVE-2017-0281)

See also :

https://portal.msrc.microsoft.com/en-us/security-guidance/summary

Solution :

Microsoft has released a set of patches for Microsoft Office 2007,
2010, 2013, and 2016; Microsoft Word 2007, 2010, 2013, and 2016; Skype
for Business 2016; Microsoft Word Viewer; Microsoft Office
Compatibility Pack; SharePoint Server 2010; SharePoint Enterprise
Server 2013 and 2016; SharePoint Foundation 2013; Word Automation
Services on Microsoft SharePoint Server 2010 and 2013; Microsoft
Office Project Server 2013; Microsoft Office Web Apps Server 2010 and
2013; and Office Online Server.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.7
(CVSS2#E:F/RL:OF/RC:ND)
Public Exploit Available : true

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 100103 ()

Bugtraq ID: 98101
98104
98107
98279
98297

CVE ID: CVE-2017-0254
CVE-2017-0255
CVE-2017-0261
CVE-2017-0262
CVE-2017-0281

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now