Oval Definition:	oval:org.cisecurity:def:1636
Revision Date: 2017-01-20 Version: 6 Title: Microsoft Office Memory Corruption Vulnerability – CVE-2016-7298 (MS16-148) Description: Microsoft Office 2007 SP3, Office 2010 SP2, Word Viewer, Office for Mac 2011, and Office 2016 for Mac allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2016-7298 Platform(s): Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft Windows Vista Product(s): Microsoft Office 2007 Microsoft Office 2010 Microsoft Word Viewer Definition Synopsis Microsoft Office 2007 + file version Microsoft Office 2007 SP3 is installed AND Check if Usp10.dll version is less than 1.0626.6002.24030 OR Microsoft Office 2010 + file version Microsoft Office 2010 SP2 is installed AND Check if Usp10.dll version is less than 1.0626.7601.23585 OR Microsoft Word Viewer + file version Microsoft Word Viewer is installed AND Check if Usp10.dll version is less than 1.0626.6002.24030
BACK