MS17-002: Security Update for Microsoft Office (3214291)
High Nessus Plugin ID 96391
SynopsisAn application installed on the remote host is affected by a remote code execution vulnerability.
DescriptionThe version of Microsoft Word or Microsoft SharePoint Server installed on the remote Windows host is missing a security update. It is, therefore, affected by a memory corruption issue due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit this, by convincing a user to visit a specially crafted website or open a specially crafted Office file, to execute arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Microsoft Word 2016 and SharePoint Server 2016