Oval Definition:	oval:org.cisecurity:def:1426
Revision Date: 2016-12-23 Version: 9 Title: Microsoft Office Memory Corruption Vulnerability – CVE-2016-7232 (MS16-133) Description: Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2016-7232 Platform(s): Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft Windows Vista Product(s): Microsoft Office 2010 Microsoft Office Compatibility Pack Microsoft Word 2007 Microsoft Word 2010 Definition Synopsis Microsoft Word 2007 + file version Microsoft Word 2007 is installed AND Check if the version of winword.exe is less than 12.0.6759.5000 OR Microsoft Word 2010 + file version Microsoft Word 2010 SP2 is installed AND Check if the version of winword.exe is less than 14.0.7176.5000 OR Microsoft Office 2010 + file version Microsoft Office 2010 SP2 Microsoft Office 2010 SP2 x86 is installed OR Microsoft Office 2010 SP1 x64 is installed AND Check if the version of wwlibcxm.dll is less than 14.0.7176.5000 OR Microsoft Office Compatibility Pack + file version Microsoft Office Compatibility Pack SP3 is installed AND Check if the version of wrd12cnv.dll is less than 12.0.6759.5000
BACK