Test ID:	1.3.6.1.4.1.25623.1.0.813257
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Office 2016 Click-to-Run (C2R) Multiple Vulnerabilities (Jul 2018)
Summary:	This host is missing an important security; update according to Microsoft Office Click-to-Run updates.
Description:	Summary: This host is missing an important security update according to Microsoft Office Click-to-Run updates. Vulnerability Insight: Multiple flaws exist due to: - Multiple errors in Microsoft Excel because it fails to properly handle objects in memory. - An error in Microsoft Excel which improperly discloses the contents of its memory. - An error in the Microsoft Outlook when Microsoft Outlook does not validate attachment headers properly Vulnerability Impact: Successful exploitation will allow an attacker to run arbitrary code in the context of the current user, gain access to potentially sensitive information and gain elevated privileges. Affected Software/OS: Microsoft Office 2016 Click-to-Run. Solution: Upgrade to latest version of Microsoft Office 2016 Click-to-Run with respect to update channel used. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-8310 BugTraq ID: 104615 http://www.securityfocus.com/bid/104615 http://www.securitytracker.com/id/1041274 Common Vulnerability Exposure (CVE) ID: CVE-2018-8281 BugTraq ID: 104609 http://www.securityfocus.com/bid/104609 http://www.securitytracker.com/id/1041252 Common Vulnerability Exposure (CVE) ID: CVE-2018-8312 BugTraq ID: 104645 http://www.securityfocus.com/bid/104645 http://www.securitytracker.com/id/1041254
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.