Oval Definition:	oval:org.cisecurity:def:1445
Revision Date: 2016-12-23 Version: 7 Title: Microsoft Office Memory Corruption Vulnerability – CVE-2016-7229 (MS16-133) Description: Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2016-7229 Platform(s): Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Vista Product(s): Microsoft Excel 2007 Microsoft Excel 2010 Microsoft Excel 2013 Microsoft Excel 2016 Microsoft Excel Viewer Microsoft Office Compatibility Pack Definition Synopsis Microsoft Excel 2007 + file version Microsoft Excel 2007 SP3 is installed AND Check if the version of excel.exe is less than 12.0.6759.5000 OR Microsoft Excel 2010 + file version Microsoft Excel 2010 SP2 is installed AND Check if the version of excel.exe is less than 14.0.7176.5000 OR Microsoft Excel 2013 + file version Microsoft Excel 2013 SP1 is installed AND Check if the version of excel.exe is less than 15.0.4875.1000 OR Microsoft Excel 2016 + file version Microsoft Excel 2016 is installed AND Check if the version of excel.exe is less than 16.0.4456.1003 OR Microsoft Office Compatibility Pack + file version Microsoft Office Compatibility Pack SP3 is installed AND Check if the version of excelcnv.exe is less than 12.0.6759.5000 OR Microsoft Excel Viewer + file version Microsoft Excel Viewer 2007 is installed AND Check if the version of xlview.exe is less than 12.0.6759.5000
BACK