CVE-2016-3282: Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility…

high7.8CVSS 3.0

AVLACLPRNUIRSUCHIHAH

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, SharePoint Server 2016, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and Office Online Server allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

Affected

28 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	office	—	—
microsoft	office_web_apps	—	—
microsoft	office_web_apps_server	—	—
microsoft	sharepoint_server	—	—
microsoft	sharepoint_server	—	—
microsoft	sharepoint_server	—	—
microsoft	word	—	—
microsoft	word	—	—
microsoft	word	—	—
microsoft	word	—	—
microsoft	word_for_mac	—	—
microsoft	word_for_mac	—	—
microsoft	word_rt	—	—
msrc	microsoft_office_2010_service_pack_2	—	—
msrc	microsoft_office_compatibility_pack_service_pack_3	—	—
msrc	microsoft_office_online_server_2016	—	—
msrc	microsoft_office_web_apps_2010_service_pack_2	—	—
msrc	microsoft_office_word_viewer	—	—
msrc	microsoft_sharepoint_server_2010_service_pack_2_on_word_automation_services	—	—
msrc	microsoft_sharepoint_server_2013_service_pack_1_on_word_automation_services	—	—
msrc	microsoft_sharepoint_server_2016	—	—
msrc	microsoft_word_2007_service_pack_3	—	—
msrc	microsoft_word_2010_service_pack_2	—	—
msrc	microsoft_word_2013_rt_service_pack_1	—	—
msrc	microsoft_word_2013_service_pack_1	—	—