This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2016-01-13
Product Word For Mac Last view 2017-06-14
Version 2016 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:microsoft:word_for_mac

Activity : Overall

Related : CVE

  Date Alert Description
8.8 2017-06-14 CVE-2017-8509

A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8510, CVE-2017-8511, CVE-2017-8512, CVE-2017-0260, and CVE-2017-8506.

7.8 2016-11-10 CVE-2016-7234

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Excel for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 2010 SP2, and Office Web Apps Server 2013 SP1 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-10-13 CVE-2016-7193

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and Office Online Server allow remote attackers to execute arbitrary code via a crafted RTF document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-09-14 CVE-2016-3357

Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office 2016, Word for Mac 2011, Word 2016 for Mac, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, SharePoint Server 2013 SP1, Excel Automation Services on SharePoint Server 2013 SP1, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 2010 SP2, and Office Web Apps Server 2013 SP1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-08-09 CVE-2016-3316

Microsoft Word 2013 SP1, 2013 RT SP1, 2016, and 2016 for Mac allow remote attackers to execute arbitrary code via a crafted file, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-08-09 CVE-2016-3313

Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016, Word 2016 for Mac, and Word Viewer allow remote attackers to execute arbitrary code via a crafted file, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-07-12 CVE-2016-3282

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, SharePoint Server 2016, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and Office Online Server allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-07-12 CVE-2016-3281

Microsoft Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-07-12 CVE-2016-3280

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, and Word Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.3 2016-06-15 CVE-2016-0025

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office 2016, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and Office Online Server allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-05-10 CVE-2016-0198

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, and Word Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-04-12 CVE-2016-0122

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Word 2016 for Mac, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-03-09 CVE-2016-0134

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, Office Web Apps 2010 SP2, and Web Apps Server 2013 SP1 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

7.8 2016-02-10 CVE-2016-0052

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 2013 SP1 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0022.

7.8 2016-02-10 CVE-2016-0022

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 2013 SP1 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0052.

7.8 2016-01-13 CVE-2016-0010

Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office 2016, Excel for Mac 2011, PowerPoint for Mac 2011, Word for Mac 2011, Excel 2016 for Mac, PowerPoint 2016 for Mac, Word 2016 for Mac, and Word Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

CWE : Common Weakness Enumeration

%idName
93% (14) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
6% (1) CWE-20 Improper Input Validation

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2018-08-16 Microsoft Office Word sprmSDyaTop memory leak attempt
RuleID : 47206 - Type : FILE-OFFICE - Revision : 1
2018-08-16 Microsoft Office Word sprmSDyaTop memory leak attempt
RuleID : 47205 - Type : FILE-OFFICE - Revision : 1
2017-07-11 Microsoft Office Word 2016 use after free attempt
RuleID : 43160 - Type : FILE-OFFICE - Revision : 5
2017-07-11 Microsoft Office Word 2016 use after free attempt
RuleID : 43159 - Type : FILE-OFFICE - Revision : 5
2017-03-14 Microsoft Internet Explorer array proto chain manipulation memory corruption ...
RuleID : 41562 - Type : BROWSER-IE - Revision : 3
2017-03-14 Microsoft Internet Explorer array proto chain manipulation memory corruption ...
RuleID : 41561 - Type : BROWSER-IE - Revision : 3
2017-03-14 Microsoft Internet Explorer use asm memory corruption attempt
RuleID : 41556 - Type : BROWSER-IE - Revision : 2
2017-03-14 Microsoft Internet Explorer use asm memory corruption attempt
RuleID : 41555 - Type : BROWSER-IE - Revision : 2
2016-12-06 Microsoft Office Word out of bounds memory read attempt
RuleID : 40702 - Type : FILE-OFFICE - Revision : 3
2016-12-06 Microsoft Office Word out of bounds memory read attempt
RuleID : 40701 - Type : FILE-OFFICE - Revision : 3
2016-11-08 Microsoft Office Word RTF file parsing buffer overflow attempt
RuleID : 40369 - Type : FILE-OFFICE - Revision : 3
2016-11-08 Microsoft Office Word RTF file parsing buffer overflow attempt
RuleID : 40368 - Type : FILE-OFFICE - Revision : 3
2016-10-13 Microsoft PowerPoint bogus JPEG marker length heap buffer overflow
RuleID : 40143 - Type : FILE-OFFICE - Revision : 2
2016-10-13 Microsoft PowerPoint bogus JPEG marker length heap buffer overflow
RuleID : 40142 - Type : FILE-OFFICE - Revision : 2
2016-09-08 Microsoft Office mso.dll out of bounds memory access attempt
RuleID : 39838 - Type : FILE-OFFICE - Revision : 2
2016-09-08 Microsoft Office mso.dll out of bounds memory access attempt
RuleID : 39837 - Type : FILE-OFFICE - Revision : 2
2016-09-08 Microsoft Office Word sprmSDyaTop memory leak attempt
RuleID : 39817 - Type : FILE-OFFICE - Revision : 6
2016-09-08 Microsoft Office Word sprmSDyaTop memory leak attempt
RuleID : 39816 - Type : FILE-OFFICE - Revision : 6
2016-08-11 Microsoft Office Word unsupported XML schema out of bounds read attempt
RuleID : 39523 - Type : FILE-OFFICE - Revision : 2
2016-08-11 Microsoft Office Word unsupported XML schema out of bounds read attempt
RuleID : 39522 - Type : FILE-OFFICE - Revision : 2
2016-08-11 Microsoft Office Word unsupported XML schema out of bounds read attempt
RuleID : 39521 - Type : FILE-OFFICE - Revision : 2
2016-08-11 Microsoft Office Word unsupported XML schema out of bounds read attempt
RuleID : 39520 - Type : FILE-OFFICE - Revision : 2
2016-08-11 Microsoft Office Word wwlib out of bounds memory access attempt
RuleID : 39519 - Type : FILE-OFFICE - Revision : 2
2016-08-11 Microsoft Office Word wwlib out of bounds memory access attempt
RuleID : 39518 - Type : FILE-OFFICE - Revision : 2
2016-08-09 Microsoft Office Word wwlib out-of-bounds memory access attempt
RuleID : 39504 - Type : FILE-OFFICE - Revision : 2

Nessus® Vulnerability Scanner

id Description
2017-06-14 Name: An application installed on the remote Windows host is affected by multiple v...
File: smb_nt_ms17_jun_office_web.nasl - Type: ACT_GATHER_INFO
2017-06-14 Name: An application installed on the remote Windows host is affected by multiple v...
File: smb_nt_ms17_jun_office_sharepoint.nasl - Type: ACT_GATHER_INFO
2017-06-14 Name: An application installed on the remote Windows host is affected by multiple v...
File: smb_nt_ms17_jun_office.nasl - Type: ACT_GATHER_INFO
2017-06-13 Name: An application installed on the remote macOS or Mac OS X host is affected by ...
File: macosx_ms17_june_office.nasl - Type: ACT_GATHER_INFO
2016-11-16 Name: An application installed on the remote macOS or Mac OS X host is affected by ...
File: macosx_ms16-133_office.nasl - Type: ACT_GATHER_INFO
2016-11-08 Name: An application installed on the remote host is affected by multiple vulnerabi...
File: smb_nt_ms16-133.nasl - Type: ACT_GATHER_INFO
2016-10-12 Name: An application installed on the remote host is affected by a remote code exec...
File: smb_nt_ms16-121.nasl - Type: ACT_GATHER_INFO
2016-10-12 Name: An application installed on the remote Mac OS X host is affected by a remote ...
File: macosx_ms16-121_office.nasl - Type: ACT_GATHER_INFO
2016-09-15 Name: An application installed on the remote Mac OS X host is affected by multiple ...
File: macosx_ms16-107_office.nasl - Type: ACT_GATHER_INFO
2016-09-14 Name: An application installed on the remote host is affected by multiple vulnerabi...
File: smb_nt_ms16-107.nasl - Type: ACT_GATHER_INFO
2016-08-10 Name: An application installed on the remote Windows host is affected by multiple v...
File: smb_nt_ms16-099.nasl - Type: ACT_GATHER_INFO
2016-07-12 Name: An application installed on the remote Mac OS X host is affected by multiple ...
File: macosx_ms16-088_office.nasl - Type: ACT_GATHER_INFO
2016-07-12 Name: An application installed on the remote Windows host is affected by multiple v...
File: smb_nt_ms16-088.nasl - Type: ACT_GATHER_INFO
2016-06-15 Name: An application installed on the remote Windows host is affected by multiple v...
File: smb_nt_ms16-070.nasl - Type: ACT_GATHER_INFO
2016-06-15 Name: An application installed on the remote Mac OS X host is affected by a remote ...
File: macosx_ms16-070_office.nasl - Type: ACT_GATHER_INFO
2016-05-11 Name: An application installed on the remote Mac OS X host is affected by multiple ...
File: macosx_ms16-054_office.nasl - Type: ACT_GATHER_INFO
2016-05-10 Name: An application installed on the remote Windows host is affected by multiple r...
File: smb_nt_ms16-054.nasl - Type: ACT_GATHER_INFO
2016-04-12 Name: An application installed on the remote Windows host is affected by multiple r...
File: smb_nt_ms16-042.nasl - Type: ACT_GATHER_INFO
2016-04-12 Name: An application installed on the remote Mac OS X host is affected by multiple ...
File: macosx_ms16-042_office.nasl - Type: ACT_GATHER_INFO
2016-03-17 Name: An application installed on the remote Mac OS X host is affected by a remote ...
File: macosx_ms16-029_office.nasl - Type: ACT_GATHER_INFO
2016-03-08 Name: The remote Windows host is affected by multiple vulnerabilities.
File: smb_nt_ms16-029.nasl - Type: ACT_GATHER_INFO
2016-02-22 Name: An application installed on the remote Mac OS X host is affected by multiple ...
File: macosx_ms16-015_office.nasl - Type: ACT_GATHER_INFO
2016-02-09 Name: The remote Windows host is affected by multiple vulnerabilities.
File: smb_nt_ms16-015.nasl - Type: ACT_GATHER_INFO
2016-01-12 Name: An application installed on the remote Mac OS X host is affected by multiple ...
File: macosx_ms16-004_office.nasl - Type: ACT_GATHER_INFO
2016-01-12 Name: The remote Windows host is affected by multiple vulnerabilities.
File: smb_nt_ms16-004.nasl - Type: ACT_GATHER_INFO