Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2016-0012 | First vendor Publication | 2016-01-13 |
| Vendor | Cve | Last vendor Modification | 2018-10-12 |
Security-Database Scoring CVSS v3
| Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N | |||
|---|---|---|---|
| Overall CVSS Score | 4.3 | ||
| Base Score | 4.3 | Environmental Score | 4.3 |
| impact SubScore | 1.4 | Temporal Score | 4.3 |
| Exploitabality Sub Score | 2.8 | ||
| Attack Vector | Network | Attack Complexity | Low |
| Privileges Required | None | User Interaction | Required |
| Scope | Unchanged | Confidentiality Impact | Low |
| Integrity Impact | None | Availability Impact | None |
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 4.3 | Attack Range | Network |
| Cvss Impact Score | 2.9 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Office 2013 SP1, Excel 2013 SP1, PowerPoint 2013 SP1, Visio 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Word 2013 RT SP1, Office 2016, Excel 2016, PowerPoint 2016, Visio 2016, Word 2016, and Visual Basic 6.0 Runtime allow remote attackers to bypass the ASLR protection mechanism via unspecified vectors, aka "Microsoft Office ASLR Bypass." |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0012 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-200 | Information Exposure |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 6 | |
| Application | 5 | |
| Application | 4 | |
| Application | 4 | |
| Application | 1 | |
| Application | 5 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2017-03-14 | Microsoft Internet Explorer array proto chain manipulation memory corruption ... RuleID : 41562 - Revision : 3 - Type : BROWSER-IE |
| 2017-03-14 | Microsoft Internet Explorer array proto chain manipulation memory corruption ... RuleID : 41561 - Revision : 3 - Type : BROWSER-IE |
| 2017-03-14 | Microsoft Internet Explorer use asm memory corruption attempt RuleID : 41556 - Revision : 2 - Type : BROWSER-IE |
| 2017-03-14 | Microsoft Internet Explorer use asm memory corruption attempt RuleID : 41555 - Revision : 2 - Type : BROWSER-IE |
| 2016-03-14 | Microsoft Office MScomctl.ocx memory leak attempt RuleID : 37282 - Revision : 2 - Type : FILE-OTHER |
| 2016-03-14 | Microsoft Office MScomctl.ocx memory leak attempt RuleID : 37281 - Revision : 2 - Type : FILE-OTHER |
| 2016-03-14 | Microsoft Office RTF parser heap overflow attempt RuleID : 37274 - Revision : 4 - Type : FILE-OFFICE |
| 2016-03-14 | Microsoft Office RTF parser heap overflow attempt RuleID : 37273 - Revision : 4 - Type : FILE-OFFICE |
| 2016-03-14 | Microsoft Office Excel mso20win32client use after free attempt RuleID : 37260 - Revision : 2 - Type : FILE-OFFICE |
| 2016-03-14 | Microsoft Office Excel mso20win32client use after free attempt RuleID : 37259 - Revision : 3 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2016-01-12 | Name : An application installed on the remote Mac OS X host is affected by multiple ... File : macosx_ms16-004_office.nasl - Type : ACT_GATHER_INFO |
| 2016-01-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms16-004.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
| Source | Url |
|---|---|
| MS | https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16... |
| SECTRACK | http://www.securitytracker.com/id/1034651 |
Alert History
| Date | Informations |
|---|---|
| 2024-02-02 01:35:58 |
|
| 2024-02-01 12:10:14 |
|
| 2023-09-05 12:34:14 |
|
| 2023-09-05 01:10:03 |
|
| 2023-09-02 12:34:06 |
|
| 2023-09-02 01:10:17 |
|
| 2023-08-12 12:37:05 |
|
| 2023-08-12 01:09:42 |
|
| 2023-08-11 12:32:10 |
|
| 2023-08-11 01:09:58 |
|
| 2023-08-06 12:31:13 |
|
| 2023-08-06 01:09:42 |
|
| 2023-08-04 12:31:20 |
|
| 2023-08-04 01:09:46 |
|
| 2023-07-14 12:31:20 |
|
| 2023-07-14 01:09:44 |
|
| 2023-03-29 01:33:05 |
|
| 2023-03-28 12:10:03 |
|
| 2022-10-11 12:28:10 |
|
| 2022-10-11 01:09:50 |
|
| 2021-05-04 09:49:45 |
|
| 2021-04-22 01:53:50 |
|
| 2020-05-23 00:48:10 |
|
| 2018-10-13 05:18:58 |
|
| 2016-12-07 21:25:02 |
|
| 2016-01-14 21:26:44 |
|
| 2016-01-13 13:25:10 |
|
| 2016-01-13 09:21:46 |
|
