MS16-133: Security Update for Microsoft Office (3199168)

high Nessus Plugin ID 94634
New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it is different from CVSS.

VPR Score: 8.9

Synopsis

An application installed on the remote host is affected by multiple vulnerabilities.

Description

The Microsoft Office application installed on the remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities :

- Multiple remote code execution vulnerabilities exist due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit these by convincing a user to visit a specially crafted website or open a specially crafted Office file, resulting in the execution of arbitrary code in the context of the current user. (CVE-2016-7213, CVE-2016-7228, CVE-2016-7229, CVE-2016-7230, CVE-2016-7231, CVE-2016-7232, CVE-2016-7234, CVE-2016-7235, CVE-2016-7236, CVE-2016-7245)

- An information disclosure vulnerability exists due to an out-of-bounds read error caused by an uninitialized variable. An unauthenticated, remote attacker can exploit this by convincing a user to open a specially crafted Office file, resulting in the disclosure of memory contents. (CVE-2016-7233)

- A denial of service vulnerability exists due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit this by convincing a user to open a specially crafted file, resulting in a crash of the application. (CVE-2016-7244)

Solution

Microsoft has released a set of patches for Microsoft Office 2007, 2010, 2013, 2013 RT, and 2016; Microsoft Excel 2007, 2010, 2013, 2013 RT, and 2016; Microsoft PowerPoint 2010; Microsoft Word 2007, 2010, 2013, and 2013 RT; Office Compatibility Pack; Excel Viewer;
PowerPoint Viewer; Word Viewer; Microsoft SharePoint Server 2010 and 2013; and Office Web Apps 2010 and 2013

See Also

https://technet.microsoft.com/library/security/MS16-133

Plugin Details

Severity: High

ID: 94634

File Name: smb_nt_ms16-133.nasl

Version: 1.7

Type: local

Agent: windows

Published: 11/8/2016

Updated: 7/30/2018

Dependencies: office_installed.nasl, ms_bulletin_checks_possible.nasl, smb_hotfixes.nasl, microsoft_sharepoint_installed.nbin, microsoft_owa_installed.nbin

Risk Information

Risk Factor: High

VPR Score: 8.9

CVSS v2.0

Base Score: 9.3

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

CVSS v3.0

Base Score: 7.8

Temporal Score: 7.5

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: cpe:2.3:a:microsoft:excel:*:*:*:*:*:*:*:*, cpe:2.3:a:microsoft:powerpoint:*:*:*:*:*:*:*:*, cpe:2.3:a:microsoft:office:*:*:*:*:*:*:*:*, cpe:2.3:a:microsoft:excel_viewer:*:*:*:*:*:*:*:*, cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:*:*:*:*, cpe:2.3:a:microsoft:office_web_apps:*:*:*:*:*:*:*:*, cpe:2.3:a:microsoft:word_viewer:*:*:*:*:*:*:*:*, cpe:2.3:a:microsoft:powerpoint_viewer:*:*:*:*:*:*:*:*

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 11/8/2016

Vulnerability Publication Date: 11/8/2016

Reference Information

CVE: CVE-2016-7228, CVE-2016-7232, CVE-2016-7236, CVE-2016-7213, CVE-2016-7229, CVE-2016-7230, CVE-2016-7231, CVE-2016-7233, CVE-2016-7234, CVE-2016-7235, CVE-2016-7244, CVE-2016-7245

BID: 93993, 93994, 93995, 94006, 93996, 94005, 94031, 94020, 94022, 94025, 94029, 94026