Memory Corruption Vulnerability in Microsoft Office Products
CVE-2016-0010

7.8HIGH

Key Information:

Vendor: Microsoft
Status: Office; Word For Mac; Excel For Mac; Powerpoint For Mac
Vendor: CVE Published:; 13 January 2016

Summary

Microsoft Office products, including versions from 2007 through 2016 and various Mac editions, contain a memory corruption vulnerability that can be exploited by remote attackers. By sending a specially crafted Office document, these attackers can execute arbitrary code on the user's system. This vulnerability underscores the importance of keeping Microsoft Office applications updated to mitigate potential exploits.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securitytracker.com/id/1034651

vdb-entryx_refsource_SECTRACK

EPSS Score

59% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 13, 2016
Vulnerability Reserved
Dec 4, 2015