Rapid7 Vulnerability & Exploit Database

MS16-107: Security Update for Microsoft Office (3185852)

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

MS16-107: Security Update for Microsoft Office (3185852)

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

09/13/2016

Created

07/25/2018

Added

09/13/2016

Modified

06/19/2023

Description

An information disclosure vulnerability exists in the way that the Click-to-Run (C2R) components handle objects in memory, which could lead to an Address Space Layout Randomization (ASLR) bypass.

Solution(s)

WINDOWS-HOTFIX-MS16-107-002ef442-7dbc-44bc-965c-7c404d0fa76b
WINDOWS-HOTFIX-MS16-107-065927b2-3c92-4970-866a-b557eb300210
WINDOWS-HOTFIX-MS16-107-0c5350b7-7ff1-4e3f-b758-0eace735fd4f
WINDOWS-HOTFIX-MS16-107-15f72f36-dc58-40bc-a94e-9df095a45d50
WINDOWS-HOTFIX-MS16-107-1969078b-9561-4864-9e32-cc42e9261fe4
WINDOWS-HOTFIX-MS16-107-1b2ce27a-9348-41c4-86d8-98559f7c8983
WINDOWS-HOTFIX-MS16-107-2111883d-ee94-4aa3-95c1-246307f5650c
WINDOWS-HOTFIX-MS16-107-26cc65f4-1634-4b98-ad6d-f38a7e3ad2ea
WINDOWS-HOTFIX-MS16-107-2aabb615-79be-4c3a-ad93-d3676d00757a
WINDOWS-HOTFIX-MS16-107-318906dc-b8b7-4ad5-838a-bdf3fb0c410b
WINDOWS-HOTFIX-MS16-107-37ce1ca6-6d94-46b7-999f-9cc5007944db
WINDOWS-HOTFIX-MS16-107-556951e4-11a8-4411-a3eb-36563ba4a67f
WINDOWS-HOTFIX-MS16-107-5616ff75-c863-474e-904d-826b11827fc2
WINDOWS-HOTFIX-MS16-107-59120cc8-aef0-4973-bc4d-ffa19b179998
WINDOWS-HOTFIX-MS16-107-6b93b43c-cd4d-4fb8-b05d-6ac0cf8d016b
WINDOWS-HOTFIX-MS16-107-75939af4-a53e-44db-a7f5-686b63fad680
WINDOWS-HOTFIX-MS16-107-7aa3e041-d346-42fd-a524-cbf863d43aed
WINDOWS-HOTFIX-MS16-107-83296a22-0a3b-484c-98a2-47aa665bd3ee
WINDOWS-HOTFIX-MS16-107-83caf66a-cfcf-40f3-b5be-6ddb8b6f725e
WINDOWS-HOTFIX-MS16-107-8b0cc3bd-0aff-458d-90d3-4f823fe3360e
WINDOWS-HOTFIX-MS16-107-907e8ae8-5ff5-49a6-9a91-7bf084a94b3b
WINDOWS-HOTFIX-MS16-107-9badf612-4854-4023-9867-76e3677311af
WINDOWS-HOTFIX-MS16-107-9d7db889-6cbc-46a7-872e-1997f8964706
WINDOWS-HOTFIX-MS16-107-a0ed93fe-49ba-4bac-b4e2-1e20b7b90401
WINDOWS-HOTFIX-MS16-107-a2021bbb-332f-4ee5-8937-023079dfa709
WINDOWS-HOTFIX-MS16-107-a454e558-14e0-40b5-b0ea-df9459a002a5
WINDOWS-HOTFIX-MS16-107-a64fda75-021d-4eb3-b519-219b33254f5a
WINDOWS-HOTFIX-MS16-107-afb9c402-2952-4286-a29d-9c4edd7561cf
WINDOWS-HOTFIX-MS16-107-b8f1e792-6730-4d6f-b975-14d07c63147f
WINDOWS-HOTFIX-MS16-107-b911f9ec-484e-401f-9c83-2607039af36d
WINDOWS-HOTFIX-MS16-107-b9a34975-6e1c-4eaa-b498-6d7ba7b4fb26
WINDOWS-HOTFIX-MS16-107-be0cb19a-4a6d-4743-a137-096259875ca1
WINDOWS-HOTFIX-MS16-107-beb5fd8f-01fc-4b0a-bd65-79bc410156ad
WINDOWS-HOTFIX-MS16-107-c71aea9d-0d9c-4ca1-94c6-bdfdc1f95e17
WINDOWS-HOTFIX-MS16-107-cc555642-a43d-4466-9a30-0164f31646be
WINDOWS-HOTFIX-MS16-107-d0f6e7d1-709b-485a-a786-5b0fdc77377a
WINDOWS-HOTFIX-MS16-107-d1743e1d-f2cc-4ca5-b4c8-097a8ab4aa2e
WINDOWS-HOTFIX-MS16-107-d1eec515-5a1b-4a7d-aca4-d7f8715553c2
WINDOWS-HOTFIX-MS16-107-d4103a5a-fc9e-4ce8-93cd-f7e2343a99a7
WINDOWS-HOTFIX-MS16-107-d68c7033-69c2-4236-9843-682c55b1295b
WINDOWS-HOTFIX-MS16-107-d7bd57e1-0818-4dc3-b98b-72ff8a4b30a6
WINDOWS-HOTFIX-MS16-107-dc049d9e-ecf9-4c37-a061-6f1bdbf91152
WINDOWS-HOTFIX-MS16-107-ddb821df-f548-4545-8e6f-c023bad3e41e
WINDOWS-HOTFIX-MS16-107-e4e71b6d-ee0d-4826-91fb-4624be189848
WINDOWS-HOTFIX-MS16-107-f24bd736-1121-4b51-a853-f575ebb8d685
WINDOWS-HOTFIX-MS16-107-f2a644a2-e574-455a-863e-17e91652449a
WINDOWS-HOTFIX-MS16-107-fb00cc28-9cb3-437e-bac5-069bc32f8aeb
WINDOWS-HOTFIX-MS16-107-fb38619e-e200-49bb-b55e-9902ec323c9a
WINDOWS-HOTFIX-MS16-107-fc383fad-39b0-4672-9892-ed4198bea726
WINDOWS-HOTFIX-MS16-107-fd3d2cb8-5f13-4131-a5cd-e181da3fe440

References

https://attackerkb.com/topics/cve-2016-0137
92785
92786
92791
92796
92798
92799
92801
92803
92804
92831
92903
CVE - 2016-0137
CVE - 2016-0141
CVE - 2016-3357
CVE - 2016-3358
CVE - 2016-3359
CVE - 2016-3360
CVE - 2016-3361
CVE - 2016-3362
CVE - 2016-3363
CVE - 2016-3364
CVE - 2016-3365
CVE - 2016-3366
CVE - 2016-3381
MS16-107
3185852

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

MS16-107: Security Update for Microsoft Office (3185852)

MS16-107: Security Update for Microsoft Office (3185852)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.