KLA10675 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

1. Improper memory objects handling can be exploited remotely via a specially designed office file to execute arbitrary code;
2. Improper Document Type Definition parsing at SharePoint InfoPath Forms Services can be exploited remotely via a specially designed file to obtain sensitive information;
3. Improper request sanitization at Office Web Apps can be exploited remotely via a specially designed URL to spoof user interface.
4. Lack of permission restrictions at Microsoft SharePoint can be exploited remotely via a specially designed Office Marketplace instance.

Technical details

To exploit vulnerabilities (2,4) malicious user must be logged in or anonymous access must be enabled

Original advisories

CVE-2015-2555

CVE-2015-6039

CVE-2015-6037

CVE-2015-2557

CVE-2015-2556

CVE-2015-2558

Related products

Microsoft-Visio-2010

Microsoft-Excel

Microsoft-Sharepoint-Server

CVE list

CVE-2015-2555 critical

CVE-2015-6039 warning

CVE-2015-6037 warning

CVE-2015-2557 critical

CVE-2015-2556 warning

CVE-2015-2558 critical

KB list

3085571

3085514

3085595

3085619

3085618

3085609

3085615

2596670

3085542

3085567

3085583

3085568

3054994

3085596

3085582

3096440

3097266

2553405

3097264

3085520

2920693

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

• SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

• SUI

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.

Affected Products

• Microsoft Excel 2007 Service Pack 3Microsoft Visio 2007 Service Pack 3Microsoft Excel 2010 Service Pack 2Microsoft Visio 2010 Service Pack 2Microsoft Excel 2013 Service Pack 1Microsoft Excel 2013 RT Service Pack 1Microsoft Excel 2016Microsoft Excel 2016 for MacMicrosoft Excel ViewerMicrosoft Office Compatibility Pack Service Pack 3Excel Services on Microsoft SharePoint Server 2007 Service Pack 3Excel Services on Microsoft SharePoint Server 2010 Service Pack 2Excel Services on Microsoft SharePoint Server 2013 Service Pack 1Microsoft Office Web Apps 2010 Service Pack 2Microsoft Office Web Apps Server 2013 Service Pack 1Microsoft SharePoint Server 2010 Service Pack 2Microsoft SharePoint Server 2013 Service Pack 1Microsoft SharePoint Foundation 2013 Service Pack 1