Lucene search

Kaspersky LabKLA10716

HistoryDec 08, 2015 - 12:00 a.m.

KLA10716 Code execution vulnerabilities in Microsoft Office

2015-12-0800:00:00

Kaspersky Lab

threats.kaspersky.com

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.522 Medium

EPSS

Percentile

97.6%

JSON

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

Improper memory handling can be exploited remotely via a specially designed content to execute arbitrary code;
Improper emails parsing can be exploited remotely via a specially designed email message to execute arbitrary code.

Technical details

Vulnerability (2) can be triggered on stations with Outlook installed. To mitigate this vulnerability you can disable messages preview and disable HTML display in Outlook.

Original advisories

Related products

Microsoft-Office

CVE list

CVE-2015-6122 critical

CVE-2015-6118 critical

CVE-2015-6177 critical

CVE-2015-6124 critical

CVE-2015-6172 critical

CVE-2015-6040 critical

KB list

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

Affected Products

Microsoft Office 2007 Service Pack 3Microsoft Office 2010 Service Pack 2Microsoft Office 2013 Service Pack 1Microsoft Office 2016Microsoft Office 2013 RT Service Pack 1Microsoft Office for Mac 2011Microsoft Office for Mac 2016