Vulnerability Name:

CVE-2016-3234 (CCN-113637)

Assigned:2016-06-14
Published:2016-06-14
Updated:2018-10-12
Summary:Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 2010 SP2, and Office Web Apps Server 2013 SP1 allow remote attackers to obtain sensitive information from process memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."
CVSS v3 Severity:5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): 
Attack Complexity (AC): 
Privileges Required (PR): 
User Interaction (UI): 
Scope:Scope (S): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
2.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)
2.2 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): 
Attack Complexity (AC): 
Privileges Required (PR): 
User Interaction (UI): 
Scope:Scope (S): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
1.0 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:S/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-200
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2016-3234

Source: CCN
Type: Microsoft Security Bulletin MS16-070
Security Update for Office (3163610)

Source: CCN
Type: Microsoft Security Bulletin MS16-088
Security Updates for Office (3170008)

Source: CCN
Type: Microsoft Security Bulletin MS16-099
Security Update for Office (3177451)

Source: CCN
Type: Microsoft Security Bulletin MS16-107
Security Update for Microsoft Office (3185852)

Source: CCN
Type: Microsoft Security Bulletin MS16-121
Security Update for Microsoft Office (3194063)

Source: CCN
Type: Microsoft Security Bulletin MS16-133
Security Update for Microsoft Office (3199168)

Source: CCN
Type: Microsoft Security Bulletin MS16-148
Security Update for Microsoft Office (3204068)

Source: CCN
Type: Microsoft Security Bulletin MS17-002
Security Update for Microsoft Office (3214291)

Source: CCN
Type: Microsoft Security Bulletin MS17-013
Security Update for Microsoft Graphics Component (4013075)

Source: CCN
Type: Microsoft Security Bulletin MS17-014
Security Update for Microsoft Office (4013241)

Source: SECTRACK
Type: UNKNOWN
1036093

Source: MS
Type: UNKNOWN
MS16-070

Source: XF
Type: UNKNOWN
ms-office-cve20163234-info-disc(113637)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:office:2010:sp2:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:office:2010:sp2:x86:*:*:*:*:*
  • OR cpe:/a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*
  • OR cpe:/a:microsoft:office_web_apps:2010:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:office_web_apps:2013:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sharepoint_server:2013:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:word:2007:sp3:*:*:*:*:*:*
  • OR cpe:/a:microsoft:word:2010:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:word_viewer:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:word_viewer:*:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*
  • OR cpe:/a:microsoft:word:2007:sp3:*:*:*:*:*:*
  • OR cpe:/a:microsoft:office:2010:sp2:*:*:*:*:x64:*
  • OR cpe:/a:microsoft:office:2010:sp2:x32:*:*:*:*:*
  • OR cpe:/a:microsoft:word:2010:sp2:*:*:*:*:x32:*
  • OR cpe:/a:microsoft:word:2010:sp2:*:*:*:*:x64:*
  • OR cpe:/a:microsoft:office_web_apps:2010:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:office_web_apps:2013:sp1:*:*:*:*:*:*
  • AND
  • cpe:/a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sharepoint_server:2013:sp1:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2016-3234 (CCN-113639)

    Assigned:2016-06-14
    Published:2016-06-14
    Updated:2018-10-12
    Summary:Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 2010 SP2, and Office Web Apps Server 2013 SP1 allow remote attackers to obtain sensitive information from process memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."
    CVSS v3 Severity:5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)
    4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
    Exploitability Metrics:Attack Vector (AV): 
    Attack Complexity (AC): 
    Privileges Required (PR): 
    User Interaction (UI): 
    Scope:Scope (S): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    2.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)
    2.2 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
    Exploitability Metrics:Attack Vector (AV): 
    Attack Complexity (AC): 
    Privileges Required (PR): 
    User Interaction (UI): 
    Scope:Scope (S): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Medium
    Authentication (Au): None
    Impact Metrics:Confidentiality (C): Partial
    Integrity (I): None
    Availibility (A): None
    1.0 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:S/C:P/I:N/A:N)
    Exploitability Metrics:Access Vector (AV): Local
    Access Complexity (AC): High
    Athentication (Au): Single_Instance
    Impact Metrics:Confidentiality (C): Partial
    Integrity (I): None
    Availibility (A): None
    Vulnerability Type:CWE-200
    Vulnerability Consequences:Obtain Information
    References:Source: MITRE
    Type: CNA
    CVE-2016-0025

    Source: MITRE
    Type: CNA
    CVE-2016-3233

    Source: MITRE
    Type: CNA
    CVE-2016-3234

    Source: MITRE
    Type: CNA
    CVE-2016-3235

    Source: CCN
    Type: Microsoft Security Bulletin MS16-070
    Security Update for Office (3163610)

    Source: CCN
    Type: IBM X-Force Exchange Vulnerability Report
    Microsoft Office code execution

    Source: XF
    Type: UNKNOWN
    win-ms16kb3163610-update(113639)

    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.cisecurity:def:877
    V
    		Microsoft Office Information Disclosure Vulnerability – CVE-2016-3234 (MS16-070)
    2016-07-29
    BACK
    microsoft office 2010 sp2
    microsoft office 2010 sp2
    microsoft office compatibility pack * sp3
    microsoft office web apps 2010 sp2
    microsoft office web apps 2013 sp1
    microsoft sharepoint server 2010 sp2
    microsoft sharepoint server 2013 sp1
    microsoft word 2007 sp3
    microsoft word 2010 sp2
    microsoft word viewer *
    microsoft word viewer *
    microsoft office compatibility pack * sp3
    microsoft word 2007 sp3
    microsoft office 2010 sp2
    microsoft office 2010 sp2
    microsoft word 2010 sp2
    microsoft word 2010 sp2
    microsoft office web apps 2010 sp2
    microsoft office web apps 2013 sp1
    microsoft sharepoint server 2010 sp2
    microsoft sharepoint server 2013 sp1