CVE-2016-7289

Опубликовано: 20 дек. 2016

Источник: nvd

CVSS3: 7.8

CVSS2: 9.3

EPSS Средний

Описание

Microsoft Publisher 2010 SP2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."

Ссылки

http://fortiguard.com/advisory/FG-VD-16-068
http://www.securityfocus.com/bid/94718
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1037441
Third Party Advisory
VDB Entry
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-148
http://fortiguard.com/advisory/FG-VD-16-068
http://www.securityfocus.com/bid/94718
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1037441
Third Party Advisory
VDB Entry
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-148

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:publisher:2010:sp2:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.33375

Средний

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости