MS.Office.wwlib.dll.RTF.File.Information.Disclosure

description-logoDescription

This indicates an attack attempt to exploit a Information Disclosure vulnerability in Microsoft Office.
The vulnerability is caused by an error when handling a malicious RTF file. An attacker can exploit this to gain sensitive information from vulnerable systems via a crafted RTF file.

affected-products-logoAffected Products

Microsoft Word 2007 Service Pack 3(3115195)
Microsoft Office 2010 Service Pack 2 (32-bit editions)(3115198)
Microsoft Office 2010 Service Pack 2 (64-bit editions)(3115198)
Microsoft Word 2010 Service Pack 2 (32-bit editions)(3115243)
Microsoft Word 2010 Service Pack 2 (64-bit editions)(3115243)
Microsoft Office Compatibility Pack Service Pack 3(3115194)
Microsoft Word Viewer(3115187)

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS16-070

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-06-10 14.629 Severity:high:medium
2019-01-04 13.518 Sig Added