Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB5002497
HistorySep 12, 2023 - 7:00 a.m.

Description of the security update for Word 2016: September 12, 2023 (KB5002497)

2023-09-1207:00:00
Microsoft
support.microsoft.com
17
word 2016
security update
information disclosure
remote code execution
cve-2023-36761
cve-2023-36762
microsoft update
microsoft update catalog
microsoft download center

7.3 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

JSON

Description of the security update for Word 2016: September 12, 2023 (KB5002497)

Summary

This security update resolves a Microsoft Word information disclosure vulnerability and Microsoft Word remote code execution vulnerability. To learn more about the vulnerabilities, see the following security advisories:

**Note:**To apply this security update, you must have the release version of Microsoft Word 2016 installed on the computer.

Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer (.msi)-based edition of Office 2016. It doesn’t apply to the Office 2016 Click-to-Run editions, such as Microsoft Office 365 Home. (See What version of Office am I using?)

How to get and install the update

Method 1: Microsoft Update

This update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the standalone package for this update, go to the Microsoft Update Catalog website.

Method 3: Microsoft Download Center

You can get the standalone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

More information

Security update deployment information

For deployment information about this update, see Deployments - Security Update Guide.

Security update replacement information

This security update replaces previously released security update 5002464.

File hash information

File name SHA256 hash
word2016-kb5002497-fullfile-x86-glb.exe 68623CFCDB3609B0AAEFCB7D0F5EB7E7CA30CC966CC911DB623520078596ADA2
word2016-kb5002497-fullfile-x64-glb.exe B3E2FF1988A1501E3F44DED05D5E0860B9EF825B07941031CF3007023FF6C874

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

__

For all supported x86-based versions of Word 2016

File identifier File name File version File size Date Time
genko.dll genko.dll 16.0.5032.1000 402264 15-Aug-23 03:50
wwintl.dll_1025 wwintl.dll 16.0.4936.1000 823584 16-Aug-23 11:26
wwintl.dll_1026 wwintl.dll 16.0.4936.1000 820504 16-Aug-23 11:26
wwintl.dll_1029 wwintl.dll 16.0.4936.1000 876320 16-Aug-23 11:26
wwintl.dll_1030 wwintl.dll 16.0.4936.1000 807712 16-Aug-23 11:26
wwintl.dll_1031 wwintl.dll 16.0.4936.1000 888088 16-Aug-23 11:26
wwintl.dll_1032 wwintl.dll 16.0.4936.1000 877856 16-Aug-23 11:26
wwintl.dll_3082 wwintl.dll 16.0.5362.1000 849784 16-Aug-23 11:26
wwintl.dll_1061 wwintl.dll 16.0.4936.1000 770840 16-Aug-23 11:26
wwintl.dll_1035 wwintl.dll 16.0.4936.1000 818464 16-Aug-23 11:26
wwintl.dll_1036 wwintl.dll 16.0.5377.1000 886136 16-Aug-23 11:26
wwintl.dll_1037 wwintl.dll 16.0.4936.1000 762144 16-Aug-23 11:26
wwintl.dll_1081 wwintl.dll 16.0.4936.1000 865056 16-Aug-23 11:26
wwintl.dll_1050 wwintl.dll 16.0.4936.1000 830744 16-Aug-23 11:26
wwintl.dll_1038 wwintl.dll 16.0.4936.1000 886560 16-Aug-23 11:26
wwintl.dll_1057 wwintl.dll 16.0.4936.1000 779040 16-Aug-23 11:26
wwintl.dll_1040 wwintl.dll 16.0.4936.1000 838424 16-Aug-23 11:27
wwintl.dll_1041 wwintl.dll 16.0.5386.1000 792456 16-Aug-23 11:26
wwintl.dll_1087 wwintl.dll 16.0.4936.1000 880408 16-Aug-23 11:27
wwintl.dll_1042 wwintl.dll 16.0.4936.1000 783136 16-Aug-23 11:27
wwintl.dll_1063 wwintl.dll 16.0.4936.1000 836896 16-Aug-23 11:27
wwintl.dll_1062 wwintl.dll 16.0.4936.1000 824608 16-Aug-23 11:27
wwintl.dll_1086 wwintl.dll 16.0.4936.1000 782616 16-Aug-23 11:27
wwintl.dll_1044 wwintl.dll 16.0.4936.1000 797168 16-Aug-23 11:27
wwintl.dll_1043 wwintl.dll 16.0.4936.1000 835872 16-Aug-23 11:27
wwintl.dll_1045 wwintl.dll 16.0.4936.1000 852256 16-Aug-23 11:27
wwintl.dll_1046 wwintl.dll 16.0.4936.1000 853280 16-Aug-23 11:27
wwintl.dll_2070 wwintl.dll 16.0.4936.1000 861464 16-Aug-23 11:27
wwintl.dll_1048 wwintl.dll 16.0.4936.1000 896280 16-Aug-23 11:27
wwintl.dll_1049 wwintl.dll 16.0.4936.1000 809968 16-Aug-23 11:27
wwintl.dll_1051 wwintl.dll 16.0.4936.1000 891160 16-Aug-23 11:27
wwintl.dll_1060 wwintl.dll 16.0.4936.1000 821768 16-Aug-23 11:27
wwintl.dll_2074 wwintl.dll 16.0.4936.1000 817944 16-Aug-23 11:27
wwintl.dll_9242 wwintl.dll 16.0.4936.1000 817952 16-Aug-23 11:27
wwintl.dll_1053 wwintl.dll 16.0.4936.1000 803616 16-Aug-23 11:27
wwintl.dll_1054 wwintl.dll 16.0.4936.1000 825112 16-Aug-23 11:27
wwintl.dll_1055 wwintl.dll 16.0.4936.1000 881952 16-Aug-23 11:27
wwintl.dll_1058 wwintl.dll 16.0.4936.1000 820000 16-Aug-23 11:27
wwintl.dll_1066 wwintl.dll 16.0.4936.1000 912672 16-Aug-23 11:27
wwintl.dll_2052 wwintl.dll 16.0.4936.1000 697120 16-Aug-23 11:27
wwintl.dll_1028 wwintl.dll 16.0.4936.1000 706240 16-Aug-23 11:27
jrpcard20.dll_1041 jrpcard20.dll 16.0.4834.1000 330960 15-Aug-23 03:50
pdfreflow.exe pdfreflow.exe 16.0.5377.1000 10308536 15-Aug-23 03:48
wwintl.dll_1033 wwintl.dll 16.0.4936.1000 701152 15-Aug-23 03:47
msword.olb msword.olb 939304 15-Aug-23 03:48
winword.exe winword.exe 16.0.5413.1000 1939960 17-Aug-23 08:39
wrd12cnv.dll wordcnv.dll 16.0.5413.1000 9186704 17-Aug-23 08:39
wwlib.dll wwlib.dll 16.0.5413.1000 29632400 17-Aug-23 08:39

__

For all supported x64-based versions of Word 2016

File identifier File name File version File size Date Time
calligra.dll calligra.dll 16.0.4528.1000 338688 16-Aug-23 11:44
genko.dll genko.dll 16.0.5032.1000 513368 15-Aug-23 03:52
wdsrv.conversion.word.wwintl.dll_1025 wwintl.dll 16.0.5413.1000 946680 17-Aug-23 08:42
wwintl.dll_1025 wwintl.dll 16.0.5413.1000 946680 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1026 wwintl.dll 16.0.5413.1000 901728 17-Aug-23 08:42
wwintl.dll_1026 wwintl.dll 16.0.5413.1000 901728 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1029 wwintl.dll 16.0.5413.1000 958056 17-Aug-23 08:42
wwintl.dll_1029 wwintl.dll 16.0.5413.1000 958056 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1030 wwintl.dll 16.0.5413.1000 888936 17-Aug-23 08:42
wwintl.dll_1030 wwintl.dll 16.0.5413.1000 888936 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1031 wwintl.dll 16.0.5413.1000 969320 17-Aug-23 08:42
wwintl.dll_1031 wwintl.dll 16.0.5413.1000 969320 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1032 wwintl.dll 16.0.5413.1000 959072 17-Aug-23 08:42
wwintl.dll_1032 wwintl.dll 16.0.5413.1000 959072 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_3082 wwintl.dll 16.0.5413.1000 928872 17-Aug-23 08:42
wwintl.dll_3082 wwintl.dll 16.0.5413.1000 928872 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1061 wwintl.dll 16.0.5413.1000 852072 17-Aug-23 08:42
wwintl.dll_1061 wwintl.dll 16.0.5413.1000 852072 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1035 wwintl.dll 16.0.5413.1000 899688 17-Aug-23 08:42
wwintl.dll_1035 wwintl.dll 16.0.5413.1000 899688 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1036 wwintl.dll 16.0.5413.1000 965224 17-Aug-23 08:42
wwintl.dll_1036 wwintl.dll 16.0.5413.1000 965224 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1037 wwintl.dll 16.0.5413.1000 885344 17-Aug-23 08:42
wwintl.dll_1037 wwintl.dll 16.0.5413.1000 885344 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1081 wwintl.dll 16.0.5413.1000 946792 17-Aug-23 08:42
wwintl.dll_1081 wwintl.dll 16.0.5413.1000 946792 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1050 wwintl.dll 16.0.5413.1000 911976 17-Aug-23 08:42
wwintl.dll_1050 wwintl.dll 16.0.5413.1000 911976 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1038 wwintl.dll 16.0.5413.1000 967776 17-Aug-23 08:42
wwintl.dll_1038 wwintl.dll 16.0.5413.1000 967776 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1057 wwintl.dll 16.0.5413.1000 860256 17-Aug-23 08:42
wwintl.dll_1057 wwintl.dll 16.0.5413.1000 860256 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1040 wwintl.dll 16.0.5413.1000 919648 17-Aug-23 08:42
wwintl.dll_1040 wwintl.dll 16.0.5413.1000 919648 17-Aug-23 08:42
wac.word.wwintl.dll_1041 wwintl.dll 16.0.5413.1000 871520
wdsrv.conversion.word.wwintl.dll_1041 wwintl.dll 16.0.5413.1000 871520 17-Aug-23 08:42
wwintl.dll_1041 wwintl.dll 16.0.5413.1000 871520 17-Aug-23 08:42
wdsrv.conversion.word.wwintl.dll_1087 wwintl.dll 16.0.5413.1000 962152 17-Aug-23 08:43
wwintl.dll_1087 wwintl.dll 16.0.5413.1000 962152 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1042 wwintl.dll 16.0.5413.1000 864872 17-Aug-23 08:43
wwintl.dll_1042 wwintl.dll 16.0.5413.1000 864872 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1063 wwintl.dll 16.0.5413.1000 918624 17-Aug-23 08:43
wwintl.dll_1063 wwintl.dll 16.0.5413.1000 918624 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1062 wwintl.dll 16.0.5413.1000 905824 17-Aug-23 08:43
wwintl.dll_1062 wwintl.dll 16.0.5413.1000 905824 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1086 wwintl.dll 16.0.5413.1000 864352 17-Aug-23 08:43
wwintl.dll_1086 wwintl.dll 16.0.5413.1000 864352 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1044 wwintl.dll 16.0.5413.1000 878176 17-Aug-23 08:43
wwintl.dll_1044 wwintl.dll 16.0.5413.1000 878176 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1043 wwintl.dll 16.0.5413.1000 917600 17-Aug-23 08:43
wwintl.dll_1043 wwintl.dll 16.0.5413.1000 917600 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1045 wwintl.dll 16.0.5413.1000 933992 17-Aug-23 08:43
wwintl.dll_1045 wwintl.dll 16.0.5413.1000 933992 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1046 wwintl.dll 16.0.5413.1000 935016 17-Aug-23 08:43
wwintl.dll_1046 wwintl.dll 16.0.5413.1000 935016 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_2070 wwintl.dll 16.0.5413.1000 942584 17-Aug-23 08:43
wwintl.dll_2070 wwintl.dll 16.0.5413.1000 942584 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1048 wwintl.dll 16.0.5413.1000 977808 17-Aug-23 08:43
wwintl.dll_1048 wwintl.dll 16.0.5413.1000 977808 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1049 wwintl.dll 16.0.5413.1000 890984 17-Aug-23 08:43
wwintl.dll_1049 wwintl.dll 16.0.5413.1000 890984 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1051 wwintl.dll 16.0.5413.1000 972792 17-Aug-23 08:43
wwintl.dll_1051 wwintl.dll 16.0.5413.1000 972792 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1060 wwintl.dll 16.0.5413.1000 902760 17-Aug-23 08:43
wwintl.dll_1060 wwintl.dll 16.0.5413.1000 902760 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_2074 wwintl.dll 16.0.5413.1000 899176 17-Aug-23 08:43
wwintl.dll_2074 wwintl.dll 16.0.5413.1000 899176 17-Aug-23 08:43
wac.word.wwintl.dll_9242 wwintl.dll 16.0.5413.1000 899168
wdsrv.conversion.word.wwintl.dll_9242 wwintl.dll 16.0.5413.1000 899168 17-Aug-23 08:43
wwintl.dll_9242 wwintl.dll 16.0.5413.1000 899168 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1053 wwintl.dll 16.0.5413.1000 884728 17-Aug-23 08:43
wwintl.dll_1053 wwintl.dll 16.0.5413.1000 884728 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1054 wwintl.dll 16.0.5413.1000 906336 17-Aug-23 08:43
wwintl.dll_1054 wwintl.dll 16.0.5413.1000 906336 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1055 wwintl.dll 16.0.5413.1000 963176 17-Aug-23 08:43
wwintl.dll_1055 wwintl.dll 16.0.5413.1000 963176 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1058 wwintl.dll 16.0.5413.1000 901112 17-Aug-23 08:43
wwintl.dll_1058 wwintl.dll 16.0.5413.1000 901112 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1066 wwintl.dll 16.0.5413.1000 994400 17-Aug-23 08:43
wwintl.dll_1066 wwintl.dll 16.0.5413.1000 994400 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_2052 wwintl.dll 16.0.5413.1000 778336 17-Aug-23 08:43
wwintl.dll_2052 wwintl.dll 16.0.5413.1000 778336 17-Aug-23 08:43
wdsrv.conversion.word.wwintl.dll_1028 wwintl.dll 16.0.5413.1000 787040 17-Aug-23 08:43
wwintl.dll_1028 wwintl.dll 16.0.5413.1000 787040 17-Aug-23 08:43
jrpcard20.dll_1041 jrpcard20.dll 16.0.4834.1000 331168 15-Aug-23 03:52
pdfreflow.exe pdfreflow.exe 16.0.5377.1000 15922632 15-Aug-23 03:50
wac.word.wwintl.dll_1033 wwintl.dll 16.0.4936.1000 780488
wdsrv.conversion.word.wwintl.dll_1033 wwintl.dll 16.0.4936.1000 780488 15-Aug-23 03:45
wwintl.dll_1033 wwintl.dll 16.0.4936.1000 780488 15-Aug-23 03:45
msword.olb msword.olb 939304 15-Aug-23 03:50
winword.exe winword.exe 16.0.5413.1000 1942928 17-Aug-23 08:40
wrd12cnv.dll wordcnv.dll 16.0.5413.1000 11894672 17-Aug-23 08:40
wwlib.dll wwlib.dll 16.0.5413.1000 37256592 17-Aug-23 08:40

Information about protection and security

Protect yourself online: Windows Security supportLearn how we guard against cyber threats: Microsoft Security

Related

nessus 4
openvas 4
nvd 2
cve 2
mskb 3
prion 2
mscve 2
cvelist 2
cisa_kev 1
attackerkb 1
talosblog 2
malwarebytes 1
kaspersky 1
thn 1
krebs 1
qualysblog 1
avleonov 1
rapid7blog 2
nessus
nessus
Security Updates for Microsoft Word Products (September 2023)
2023-09-12 00:00:00
Security Updates for Microsoft Word Products C2R Multiple Vulnerabilities (September 2023)
2023-09-13 00:00:00
Security Updates for Microsoft SharePoint Server 2016 (September 2023)
2023-09-12 00:00:00
openvas
openvas
Microsoft Word 2016 Multiple Vulnerabilities (KB5002497)
2023-09-13 00:00:00
Microsoft Word 2013 Service Pack 1 Information Disclosure Vulnerability (KB5002483)
2023-09-13 00:00:00
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Sep 2023)
2023-09-14 00:00:00
nvd
nvd
CVE-2023-36762
2023-09-12 17:15:12
CVE-2023-36761
2023-09-12 17:15:11
cve
cve
CVE-2023-36761
2023-09-12 17:15:11
CVE-2023-36762
2023-09-12 17:15:12
mskb
mskb
Description of the security update for SharePoint Enterprise Server 2016 Language Pack: September 12, 2023 (KB5002501)
2023-09-12 07:00:00
Description of the security update for Word 2013: September 12, 2023 (KB5002483)
2023-09-12 07:00:00
Description of the security update for SharePoint Enterprise Server 2016: September 12, 2023 (KB5002494)
2023-09-12 07:00:00
prion
prion
Remote code execution
2023-09-12 17:15:00
Information disclosure
2023-09-12 17:15:00
mscve
mscve
Microsoft Word Remote Code Execution Vulnerability
2023-09-12 07:00:00
Microsoft Word Information Disclosure Vulnerability
2023-09-12 07:00:00
cvelist
cvelist
CVE-2023-36762 Microsoft Word Remote Code Execution Vulnerability
2023-09-12 16:58:45
CVE-2023-36761 Microsoft Word Information Disclosure Vulnerability
2023-09-12 16:58:46
cisa_kev
cisa_kev
Microsoft Word Information Disclosure Vulnerability
2023-09-12 00:00:00
attackerkb
attackerkb
CVE-2023-36761
2023-09-12 00:00:00
talosblog
talosblog
Turns out even the NFL is worried about deepfakes
2023-09-14 18:00:39
Microsoft Patch Tuesday for September 2023 — Unusually low 5 critical vulnerabilities included in Microsoft Patch Tuesday, along with two zero-days
2023-09-12 20:51:07
malwarebytes
malwarebytes
Patch now! September Microsoft Patch Tuesday includes two actively exploited zero-days
2023-09-13 02:00:00
kaspersky
kaspersky
KLA60562 Multiple vulnerabilities in Microsoft Office
2023-09-12 00:00:00
thn
thn
Microsoft Releases Patch for Two New Actively Exploited Zero-Days Flaws
2023-09-13 05:18:00
krebs
krebs
Adobe, Apple, Google & Microsoft Patch 0-Day Bugs
2023-09-12 22:36:01
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review
2023-09-12 19:20:31
avleonov
avleonov
September 2023: VM courses, Bahasa Indonesia, Russian Podcasts, Goodbye Tinkoff, MS Patch Tuesday, Qualys TOP 20, Linux, Forrester, GigaOm, R-Vision VM
2023-09-30 19:31:42
rapid7blog
rapid7blog
Patch Tuesday - September 2023
2023-09-12 22:55:55
Patch Tuesday - February 2024
2024-02-13 21:26:21

7.3 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

JSON
Related for KB5002497
nessus4openvas4nvd2cve2mskb3prion2mscve2cvelist2cisa_kev1attackerkb1talosblog2malwarebytes1kaspersky1thn1krebs1qualysblog1avleonov1rapid7blog2