PT-2016-7271 · Microsoft · Windows Vista+5

Publicado

2016-12-13

·

Atualizado

2018-10-12

·

CVE-2016-7257

CVSS v3.1

6.5

Média

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1 Microsoft Office for Mac 2011 Microsoft Office 2016 for Mac
Description The issue allows remote attackers to obtain sensitive information from process memory via a crafted web site. It affects the system and allows attackers to obtain sensitive information.
Recommendations For Microsoft Windows Vista SP2, update to a newer version to mitigate the risk. For Microsoft Windows Server 2008 SP2 and R2 SP1, update to a newer version to mitigate the risk. For Microsoft Windows 7 SP1, update to a newer version to mitigate the risk. For Microsoft Office for Mac 2011, update to a newer version to mitigate the risk. For Microsoft Office 2016 for Mac, update to a newer version to mitigate the risk.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2016-7257

Produtos afetados

Office 2016 For Mac
Office For Mac 2011
Windows
Windows 7
Windows Server 2008
Windows Vista