From winvulns-announcements at bigmail.bigfix.com Sat Dec 3 05:20:57 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Sat, 3 Dec 2016 05:20:57 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 526 Published: Fri, 02 Dec 2016 23:07:13 GMT New Fixlets: ============ *************************************************************** Title: Windows IME Elevation of Privilege Vulnerability - CVE-2016-7221 (MS16-130) Severity: High Fixlet ID: 147502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1475 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7221 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Input Method Editor (IME) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles DLL loading, which allows local users to gain privileges via unspecified vectors, aka "Windows IME Elevation of Privilege Vulnerability." *************************************************************** Title: Task Scheduler Elevation of Privilege Vulnerability - CVE-2016-7222 (MS16-130) Severity: High Fixlet ID: 147601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1476 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7222 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Task Scheduler in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to gain privileges via a crafted UNC pathname in a task, aka "Task Scheduler Elevation of Privilege Vulnerability." *************************************************************** Title: Microsoft Video Control Remote Code Execution Vulnerability - CVE-2016-7248 (MS16-131) Severity: High Fixlet ID: 147702 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1477 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7248 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Video Control in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted file, aka "Microsoft Video Control Remote Code Execution Vulnerability." *************************************************************** Title: Open Type Font Remote Code Execution Vulnerability - CVE-2016-7256 (MS16-132) Severity: High Fixlet ID: 147802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1478 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7256 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: atmfd.dll in the Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka "Open Type Font Remote Code Execution Vulnerability." *************************************************************** Title: Open Type Font Information Disclosure Vulnerability - CVE-2016-7210 (MS16-132) Severity: Medium Fixlet ID: 147901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1479 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7210 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: atmfd.dll in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted Open Type font on a web site, aka "Open Type Font Information Disclosure Vulnerability." *************************************************************** Title: Virtual Secure Mode Information Disclosure Vulnerability - CVE-2016-7220 (MS16-137) Severity: Low Fixlet ID: 148002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1480 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7220 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Virtual Secure Mode in Microsoft Windows 10 allows local users to obtain sensitive information via a crafted application, aka "Virtual Secure Mode Information Disclosure Vulnerability." *************************************************************** Title: Media Foundation Memory Corruption Vulnerability - CVE-2016-7217 (MS16-132) Severity: High Fixlet ID: 148102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1481 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7217 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Media Foundation in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka "Media Foundation Memory Corruption Vulnerability." *************************************************************** Title: Windows Animation Manager Memory Corruption Vulnerability - CVE-2016-7205 (MS16-132) Severity: High Fixlet ID: 148201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1482 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7205 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Animation Manager in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka "Windows Animation Manager Memory Corruption Vulnerability." From winvulns-announcements at bigmail.bigfix.com Tue Dec 6 05:20:58 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Tue, 6 Dec 2016 05:20:58 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 527 Published: Mon, 05 Dec 2016 22:30:25 GMT New Fixlets: ============ *************************************************************** Title: Windows Bowser.sys Information Disclosure Vulnerability - CVE- 2016-7218 (MS16-135) Severity: Low Fixlet ID: 148302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1483 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7218 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Bowser.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain sensitive information via a crafted application, aka "Windows Bowser.sys Information Disclosure Vulnerability." *************************************************************** Title: Win32k Elevation of Privilege Vulnerability - CVE-2016-7255 (MS16-135) Severity: High Fixlet ID: 148402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1484 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7255 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." *************************************************************** Title: Win32k Elevation of Privilege Vulnerability - CVE-2016-7246 (MS16-135) Severity: High Fixlet ID: 148502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1485 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7246 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The kernel-mode drivers in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." *************************************************************** Title: Win32k Information Disclosure Vulnerability - CVE-2016-7214 (MS16-135) Severity: Low Fixlet ID: 148601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1486 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7214 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to bypass the ASLR protection mechanism via a crafted application, aka "Win32k Information Disclosure Vulnerability." *************************************************************** Title: Win32k Elevation of Privilege Vulnerability - CVE-2016-7215 (MS16-135) Severity: High Fixlet ID: 148701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1487 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7215 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." *************************************************************** Title: MDS API XSS Vulnerability - CVE-2016-7251 (MS16-136) Severity: Medium Fixlet ID: 148802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1488 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7251 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Cross-site scripting (XSS) vulnerability in the MDS API in Microsoft SQL Server 2016 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka "MDS API XSS Vulnerability." *************************************************************** Title: SQL Analysis Services Information Disclosure Vulnerability - CVE-2016-7252 (MS16-136) Severity: Medium Fixlet ID: 149002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1490 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7252 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SQL Server 2016 mishandles the FILESTREAM path, which allows remote authenticated users to gain privileges via unspecified vectors, aka "SQL Analysis Services Information Disclosure Vulnerability." *************************************************************** Title: SQL RDBMS Engine EoP vulnerability - CVE-2016-7249 (MS16-136) Severity: Low Fixlet ID: 149102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1491 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7214 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SQL Server 2016 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability." *************************************************************** Title: SQL RDBMS Engine EoP vulnerability - CVE-2016-7250 (MS16-136) Severity: Medium Fixlet ID: 149202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1492 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7250 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SQL Server 2014 SP1, 2014 SP2, and 2016 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability." *************************************************************** Title: Windows NTLM Elevation of Privilege Vulnerability - CVE-2016-7238 (MS16-137) Severity: High Fixlet ID: 149601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1496 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7238 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandle caching for NTLM password-change requests, which allows local users to gain privileges via a crafted application, aka "Windows NTLM Elevation of Privilege Vulnerability." *************************************************************** Title: Local Security Authority Subsystem Service Denial of Service Vulnerability - CVE-2016-7237 (MS16-137) Severity: Medium Fixlet ID: 149702 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1497 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7237 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Local Security Authority Subsystem Service (LSASS) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote authenticated users to cause a denial of service (system hang) via a crafted request, aka "Local Security Authority Subsystem Service Denial of Service Vulnerability." From winvulns-announcements at bigmail.bigfix.com Fri Dec 16 05:21:10 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Fri, 16 Dec 2016 05:21:10 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 528 Published: Thu, 15 Dec 2016 19:59:01 GMT New Fixlets: ============ *************************************************************** Title: VHD Driver Elevation of Privilege Vulnerability - CVE-2016-7224 (MS16-138) Severity: Low Fixlet ID: 149802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1498 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7224 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Virtual Hard Disk Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability." *************************************************************** Title: VHD Driver Elevation of Privilege Vulnerability - CVE-2016-7223 (MS16-138) Severity: Low Fixlet ID: 149902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1499 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7223 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Virtual Hard Disk Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability." *************************************************************** Title: VHD Driver Elevation of Privilege Vulnerability - CVE-2016-7225 (MS16-138) Severity: Low Fixlet ID: 150001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1500 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7225 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Virtual Hard Disk Driver in Windows 10 Gold, 1511, and 1607 and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability." *************************************************************** Title: VHD Driver Elevation of Privilege Vulnerability - CVE-2016-7226 (MS16-138) Severity: Low Fixlet ID: 150101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1501 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7226 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Virtual Hard Disk Driver in Windows 10 Gold, 1511, and 1607 and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability." *************************************************************** Title: SQL RDBMS Engine EoP vulnerability - CVE-2016-7254 (MS16-136) Severity: Medium Fixlet ID: 151302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1513 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7254 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SQL Server 2012 SP2 and 2012 SP3 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability." *************************************************************** Title: SQL Server Agent Elevation of Privilege Vulnerability - CVE-2016-7253 (MS16-136) Severity: Medium Fixlet ID: 151402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1514 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7253 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The agent in Microsoft SQL Server 2012 SP2, 2012 SP3, 2014 SP1, 2014 SP2, and 2016 does not properly check the atxcore.dll ACL, which allows remote authenticated users to gain privileges via unspecified vectors, aka "SQL Server Agent Elevation of Privilege Vulnerability." *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2016-7216 (MS16-139) Severity: Low Fixlet ID: 151601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1516 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7216 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 mishandles permissions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability." *************************************************************** Title: Secure Boot Component Vulnerability - CVE-2016-7247 (MS16-140) Severity: Medium Fixlet ID: 151702 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1517 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7247 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow physically proximate attackers to bypass the Secure Boot protection mechanism via a crafted boot policy, aka "Secure Boot Component Vulnerability." From winvulns-announcements at bigmail.bigfix.com Tue Dec 20 05:21:00 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Tue, 20 Dec 2016 05:21:00 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 530 Published: Mon, 19 Dec 2016 23:48:08 GMT New Fixlets: ============ *************************************************************** Title: MSL coder vulnerability in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 - CVE-2016-3716 Severity: Medium Fixlet ID: 155102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1551 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3716 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image. *************************************************************** Title: LABEL coder vulnerability in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 - CVE-2016-3717 Severity: High Fixlet ID: 155201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1552 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3717 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to read arbitrary files via a crafted image. *************************************************************** Title: Cisco IP Communicator 8.6(4) allows remote attackers to cause a denial of service - CVE-2015-4240 Severity: Medium Fixlet ID: 155302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1553 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4240 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Cisco IP Communicator 8.6(4) allows remote attackers to cause a denial of service (service outage) via an unspecified URL in a GET request, aka Bug ID CSCuu37656. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7873 Severity: High Fixlet ID: 159302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1593 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7873 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7874 Severity: High Fixlet ID: 159401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1594 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7874 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7868 Severity: High Fixlet ID: 159502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1595 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7868 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7872 Severity: High Fixlet ID: 159601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1596 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7872 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7871 Severity: High Fixlet ID: 159702 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1597 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7871 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7867 Severity: High Fixlet ID: 159802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1598 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7867 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7870 Severity: High Fixlet ID: 159902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1599 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7870 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7875 Severity: High Fixlet ID: 160002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1600 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7875 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier - CVE-2016-7869 Severity: High Fixlet ID: 160102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1601 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7869 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Flash Player version 23.0.0.207 and earlier. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7877 Severity: High Fixlet ID: 160502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1605 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7877 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the Action Message Format serialization (AFM0). Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7876 Severity: High Fixlet ID: 160602 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1606 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7876 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the Clipboard class related to data handling functionality. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7892 Severity: High Fixlet ID: 160701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1607 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7892 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the TextField class. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7878 Severity: High Fixlet ID: 160801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1608 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7878 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7881 Severity: High Fixlet ID: 160902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1609 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7881 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class when handling conversion to an object. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7879 Severity: High Fixlet ID: 161001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1610 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7879 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the NetConnection class when handling an attached script object. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7890 Severity: High Fixlet ID: 161102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1611 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7890 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier - CVE-2016-7880 Severity: High Fixlet ID: 161202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1612 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7880 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability when setting the length property of an array object. Successful exploitation could lead to arbitrary code execution. From winvulns-announcements at bigmail.bigfix.com Wed Dec 28 05:21:18 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Wed, 28 Dec 2016 05:21:18 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 531 Published: Tue, 27 Dec 2016 23:22:02 GMT New Fixlets: ============ *************************************************************** Title: GDI Information Disclosure Vulnerability - CVE-2016-7257 (MS16-146) Severity: Medium Fixlet ID: 160202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1602 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7257 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An Information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. *************************************************************** Title: Windows Graphics Remote Code Execution Vulnerability - CVE-2016-7272 (MS16-146) Severity: High Fixlet ID: 160302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1603 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7272 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Multiple Remote Code Execution vulnerabilities exists due to the way the Windows Graphics component handles objects in the memory. *************************************************************** Title: Windows Graphics Remote Code Execution Vulnerability - CVE-2016-7273 (MS16-146) Severity: High Fixlet ID: 160402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1604 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7273 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Multiple Remote Code Execution vulnerabilities exists due to the way the Windows Graphics component handles objects in the memory. *************************************************************** Title: Windows Crypto Driver Information Disclosure Vulnerability - CVE-2016-7219 (MS16-149) Severity: Low Fixlet ID: 161301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1613 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7219 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Crypto driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain sensitive information via a crafted application, aka "Windows Crypto Driver Information Disclosure Vulnerability." *************************************************************** Title: Windows Installer Elevation of Privilege Vulnerability - CVE-2016-7292 (MS16-149) Severity: High Fixlet ID: 161402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1614 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7292 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Installer in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles library loading, which allows local users to gain privileges via a crafted application, aka "Windows Installer Elevation of Privilege Vulnerability." *************************************************************** Title: Microsoft Edge Information Disclosure Vulnerability - CVE-2016-7280 (MS16-145) Severity: Medium Fixlet ID: 162502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1625 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7280 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Cross-site scripting (XSS) vulnerability in Microsoft Edge allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Microsoft Edge Information Disclosure Vulnerability," a different vulnerability than CVE-2016-7206. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2016-7288 (MS16-145) Severity: High Fixlet ID: 162601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1626 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7288 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7286, CVE-2016-7296, and CVE-2016-7297. *************************************************************** Title: Windows Hyperlink Object Library Information Disclosure Vulnerability - CVE-2016-7278 (MS16-144) Severity: Low Fixlet ID: 162701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1627 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7278 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Windows Hyperlink Object Library Information Disclosure Vulnerability." *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2016-7296 (MS16-145) Severity: High Fixlet ID: 162801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1628 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7296 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7286, CVE-2016-7288, and CVE-2016-7297. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2016-7202 (MS16-144) Severity: High Fixlet ID: 162901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1629 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7202 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," as demonstrated by the Chakra JavaScript engine, a different vulnerability than CVE-2016-7200, CVE-2016-7201, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7242, and CVE-2016-7243. *************************************************************** Title: Microsoft Edge Memory Corruption Vulnerability - CVE-2016-7181 (MS16-145) Severity: High Fixlet ID: 163002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1630 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7181 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability." *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2016-7286 (MS16-145) Severity: High Fixlet ID: 163101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1631 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7286 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7288, CVE-2016-7296, and CVE-2016-7297. *************************************************************** Title: Internet Explorer Information Disclosure Vulnerability - CVE-2016-7284 (MS16-144) Severity: Medium Fixlet ID: 163202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1632 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7284 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Internet Explorer 10 and 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerability." *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2016-7297 (MS16-145) Severity: High Fixlet ID: 163302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1633 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7297 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7286, CVE-2016-7288, and CVE-2016-7296. *************************************************************** Title: Internet Explorer Memory Corruption Vulnerability - CVE-2016-7283 (MS16-144) Severity: High Fixlet ID: 163401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1634 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7283 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." *************************************************************** Title: Microsoft Edge Information Disclosure Vulnerability - CVE-2016-7206 (MS16-145) Severity: Medium Fixlet ID: 163502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1635 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7206 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Cross-site scripting (XSS) vulnerability in Microsoft Edge allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Microsoft Edge Information Disclosure Vulnerability," a different vulnerability than CVE-2016-7280. *************************************************************** Title: Microsoft Office Memory Corruption Vulnerability - CVE-2016-7298 (MS16-148) Severity: High Fixlet ID: 163601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1636 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7298 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2007 SP3, Office 2010 SP2, Word Viewer, Office for Mac 2011, and Office 2016 for Mac allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." *************************************************************** Title: Microsoft Office Information Disclosure Vulnerability - CVE-2016-7276 (MS16-148) Severity: Medium Fixlet ID: 163701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1637 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7276 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office for Mac 2011, and Office 2016 for Mac allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via a crafted document, aka "Microsoft Office Information Disclosure Vulnerability." *************************************************************** Title: Microsoft Office OLE DLL Side Loading Vulnerability - CVE-2016-7275 (MS16-148) Severity: High Fixlet ID: 163802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1638 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7275 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 mishandles library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability." From winvulns-announcements at bigmail.bigfix.com Wed Dec 28 07:01:01 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Wed, 28 Dec 2016 10:01:01 -0500 Subject: [Winvulns-announcements] AUTO: Derek Aberle is out of the office (returning 12/29/2016) Message-ID: I am out of the office until 12/29/2016. Note: This is an automated response to your message "[Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems'" sent on 12/28/2016 8:21:18 AM. This is the only notification you will receive while this person is away. -------------- next part -------------- An HTML attachment was scrubbed... URL: From winvulns-announcements at bigmail.bigfix.com Sat Dec 31 05:21:14 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Sat, 31 Dec 2016 05:21:14 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 532 Published: Sat, 31 Dec 2016 00:01:54 GMT New Fixlets: ============ *************************************************************** Title: Microsoft Office Memory Corruption Vulnerability - CVE-2016-7289 (MS16-148) Severity: High Fixlet ID: 163902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1639 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7289 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Publisher 2010 SP2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." *************************************************************** Title: Microsoft Office Information Disclosure Vulnerability - CVE-2016-7268 (MS16-148) Severity: Medium Fixlet ID: 164002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1640 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7268 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word Viewer, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via a crafted document, aka "Microsoft Office Information Disclosure Vulnerability." *************************************************************** Title: Microsoft Office Information Disclosure Vulnerability - CVE-2016-7291 (MS16-148) Severity: Medium Fixlet ID: 164101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1641 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7291 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via a crafted document, aka "Microsoft Office Information Disclosure Vulnerability," a different vulnerability than CVE-2016-7290. *************************************************************** Title: Microsoft Office Information Disclosure Vulnerability - CVE-2016-7290 (MS16-148) Severity: Medium Fixlet ID: 164202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1642 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7290 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via a crafted document, aka "Microsoft Office Information Disclosure Vulnerability," a different vulnerability than CVE-2016-7291. *************************************************************** Title: Microsoft Office Security Feature Bypass Vulnerability - CVE-2016-7267 (MS16-148) Severity: Medium Fixlet ID: 164302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1643 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7267 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Excel 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 misparses file formats, which makes it easier for remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Security Feature Bypass Vulnerability." *************************************************************** Title: Microsoft Office Security Feature Bypass Vulnerability - CVE-2016-7266 (MS16-148) Severity: Medium Fixlet ID: 164402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1644 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7266 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, Excel Viewer, and Excel 2016 for Mac mishandle a registry check, which allows user-assisted remote attackers to execute arbitrary commands via crafted embedded content in a document, aka "Microsoft Office Security Feature Bypass Vulnerability."