CVE-2016-3358

Опубликовано: 14 сент. 2016

Источник: nvd

CVSS3: 7.8

CVSS2: 9.3

EPSS Средний

Описание

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel 2016 for Mac, Office Compatibility Pack SP3, Excel Viewer, Excel Services on SharePoint Server 2007 SP3, Excel Services on SharePoint Server 2010 SP2, Excel Automation Services on SharePoint Server 2013 SP1, and Office Online Server allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:excel:2007:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2013:sp1:*:*:rt:*:*:*

cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel_for_mac:2016:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel_viewer:*:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:office_online_server:*:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:sharepoint_designer:2007:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:sharepoint_designer:2010:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:sharepoint_designer:2013:sp1:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.28595

Средний

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2016-3358

msrc

почти 9 лет назад

Microsoft Office Memory Corruption Vulnerability

GHSA-87pf-j2gx-jjvx