cbcvebase.
CVE-2016-3279
published 2016-07-13

CVE-2016-3279: Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1…

medium5.5CVSS 3.0
AVLACLPRNUIRSUCNIHAN
Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Word 2013 RT SP1, Excel 2016, Word 2016, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to execute arbitrary code via a crafted XLA file, aka "Microsoft Office Remote Code Execution Vulnerability."

Affected

27 ranges· showing 25
VendorProductVersion rangeFixed in
microsoftexcel
microsoftexcel
microsoftexcel
microsoftexcel_rt
microsoftoffice
microsoftoffice_web_apps
microsoftpowerpoint
microsoftpowerpoint
microsoftpowerpoint_rt
microsoftsharepoint_server
microsoftword
microsoftword
microsoftword
microsoftword_rt
msrcmicrosoft_excel_2010_service_pack_2
msrcmicrosoft_excel_2013_rt_service_pack_1
msrcmicrosoft_excel_2013_service_pack_1
msrcmicrosoft_excel_2016
msrcmicrosoft_office_2010_service_pack_2
msrcmicrosoft_office_web_apps_2010_service_pack_2
msrcmicrosoft_office_web_apps_2013_service_pack_1
msrcmicrosoft_powerpoint_2010_service_pack_2
msrcmicrosoft_powerpoint_2013_rt_service_pack_1
msrcmicrosoft_powerpoint_2013_service_pack_1
msrcmicrosoft_sharepoint_server_2010_service_pack_2