Home

CVE-2016-3359

Description

Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted document, aka Microsoft Office Memory Corruption Vulnerability.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
19.792

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Outlook Spoofing Vulnerability for Microsoft SharePoint Enterprise Server 2013 (KB3115169)Windows
Microsoft Outlook Spoofing Vulnerability for Microsoft SharePoint Enterprise Server 2013 (KB3054862)Windows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2013 (KB3118268) 64-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2013 (KB3118268) 32-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2007 suites (KB3118300)Windows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2016 (KB3118292) 64-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2016 (KB3118292) 32-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2010 (KB3118309) 64-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2010 (KB3118309) 32-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2010 (KB2553432) 64-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office 2010 (KB2553432) 32-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Office 2003 (KB3118297)Windows
Microsoft Outlook Spoofing Vulnerability for Microsoft SharePoint Server 2010 (KB3115119)Windows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office Compatibility Pack Service Pack 3 (KB3115462)Windows
Microsoft Outlook Spoofing Vulnerability for Microsoft Excel 2010 (KB3118316) 64-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Excel 2010 (KB3118316) 32-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Excel 2016 (KB3118290) 64-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Excel 2016 (KB3118290) 32-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office Excel Viewer 2007 (KB3115463)Windows
Microsoft Outlook Spoofing Vulnerability for Microsoft Excel 2013 (KB3118284) 64-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Excel 2013 (KB3118284) 32-Bit EditionWindows
Microsoft Outlook Spoofing Vulnerability for Microsoft Office Excel 2007 (KB3115459)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-21428Security Update for Microsoft SharePoint Enterprise Server 2013 (KB3115169)
PATCH-21409Security Update for Microsoft Office 2013 (KB3118268) 64-Bit Edition
PATCH-21408Security Update for Microsoft Office 2013 (KB3118268) 32-Bit Edition
PATCH-21417Security Update for Microsoft Office 2016 (KB3118292) 64-Bit Edition
PATCH-21416Security Update for Microsoft Office 2016 (KB3118292) 32-Bit Edition
PATCH-21401Security Update for Microsoft Office 2010 (KB2553432) 64-Bit Edition
PATCH-21400Security Update for Microsoft Office 2010 (KB2553432) 32-Bit Edition
PATCH-21424Security Update for Office 2003 (KB3118297)
PATCH-21423Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3115462)
PATCH-21403Security Update for Microsoft Excel 2010 (KB3118316) 64-Bit Edition
PATCH-21402Security Update for Microsoft Excel 2010 (KB3118316) 32-Bit Edition
PATCH-21419Security Update for Microsoft Excel 2016 (KB3118290) 64-Bit Edition
PATCH-21418Security Update for Microsoft Excel 2016 (KB3118290) 32-Bit Edition
PATCH-21426Security Update for Microsoft Office Excel Viewer 2007 (KB3115463)
PATCH-21411Security Update for Microsoft Excel 2013 (KB3118284) 64-Bit Edition
PATCH-21410Security Update for Microsoft Excel 2013 (KB3118284) 32-Bit Edition
PATCH-21395Security Update for Microsoft Office Excel 2007 (KB3115459)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234