SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

ASLR security feature bypass vulnerability in Microsoft Office - CVE-2016-0012

ID: oval:org.secpod.oval:def:32603	Date: (C)2016-01-14 (M)2023-05-09
Class: VULNERABILITY	Family: windows

The host is installed with Microsoft Office 2007, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Office 2013, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Office 2016, Excel 2016, PowerPoint 2016, Visio 2016, Word 2016 or Visual Basic 6.0 and is prone to an ASLR security feature bypass vulnerability. The flaws are present in the applications, which fail to use the Address Space Layout Randomization (ASLR) security feature. An attacker who successfully exploited these vulnerabilities could run remote code.

Platform:

Microsoft Windows Server 2022

Microsoft Windows 11

Microsoft Windows Server 2019

Microsoft Windows Server 2016

Microsoft Windows 7

Microsoft Windows 8

Microsoft Windows 8.1

Microsoft Windows Server 2003

Microsoft Windows Server 2008

Microsoft Windows Server 2012

Microsoft Windows Server 2012 R2

Microsoft Windows Vista

Microsoft Windows 10

Microsoft Windows Server 2008 R2

Product:

Microsoft Office 2007

Microsoft Office 2010

Microsoft Office 2013

Microsoft Office 2016

Microsoft Excel 2007

Microsoft Excel 2010

Microsoft Excel 2013

Microsoft Excel 2016

Microsoft PowerPoint 2007

Microsoft PowerPoint 2010

Microsoft PowerPoint 2013

Microsoft Powerpoint 2016

Microsoft Visio 2007

Microsoft Visio 2010

Microsoft Visio 2013

Microsoft Visio 2016

Microsoft Word 2007

Microsoft Word 2010

Microsoft Word 2013

Microsoft Word 2016

Microsoft Visual Basic 6.0

Reference:

CVE-2016-0012


30479



423868



248392



909



195452



282