Home

CVE-2016-0139

Description

Microsoft Excel 2010 SP2, Word for Mac 2011, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka Microsoft Office Memory Corruption Vulnerability.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
30.333

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office Compatibility Pack Service Pack 3 (KB3114895)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Excel 2010 (KB3114888) 64-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Excel 2010 (KB3114888) 32-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Excel 2016 (KB3114964) 64-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Excel 2016 (KB3114964) 32-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Excel 2013 (KB3114947) 64-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Excel 2013 (KB3114947) 32-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office Excel 2007 (KB3114892)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office Excel Viewer 2007 (KB3114898)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office Compatibility Pack Service Pack 3 (KB3114982)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Web Applications (KB3114994)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office 2010 (KB3114990) 64-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office 2010 (KB3114990) 32-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Word Viewer (KB3114987)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Office Word 2007 (KB3114983)Windows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Word 2013 (KB3114937) 64-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Word 2013 (KB3114937) 32-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Word 2010 (KB3114993) 64-Bit EditionWindows
Microsoft Office Remote Code Execution Vulnerability for Microsoft Word 2010 (KB3114993) 32-Bit EditionWindows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-20443Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114895)
PATCH-20433Security Update for Microsoft Excel 2010 (KB3114888) 64-Bit Edition
PATCH-20432Security Update for Microsoft Excel 2010 (KB3114888) 32-Bit Edition
PATCH-20441Security Update for Microsoft Excel 2016 (KB3114964) 64-Bit Edition
PATCH-20440Security Update for Microsoft Excel 2016 (KB3114964) 32-Bit Edition
PATCH-20437Security Update for Microsoft Excel 2013 (KB3114947) 64-Bit Edition
PATCH-20436Security Update for Microsoft Excel 2013 (KB3114947) 32-Bit Edition
PATCH-20428Security Update for Microsoft Office Excel 2007 (KB3114892)
PATCH-20444Security Update for Microsoft Office Excel Viewer 2007 (KB3114898)
PATCH-20446Security Update for Microsoft Web Applications (KB3114994)
PATCH-20431Security Update for Microsoft Office 2010 (KB3114990) 64-Bit Edition
PATCH-20430Security Update for Microsoft Office 2010 (KB3114990) 32-Bit Edition
PATCH-20445Security Update for Word Viewer (KB3114987)
PATCH-20429Security Update for Microsoft Office Word 2007 (KB3114983)
PATCH-20439Security Update for Microsoft Word 2013 (KB3114937) 64-Bit Edition
PATCH-20438Security Update for Microsoft Word 2013 (KB3114937) 32-Bit Edition
PATCH-20434Security Update for Microsoft Word 2010 (KB3114993) 32-Bit Edition

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234