CVE-2016-7213

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

Published: Nov 10, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-7213
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
microsoft / excel	2013-sp1	2013-sp1.x
microsoft / excel	2016	2016.x
microsoft / excel_for_mac	2011	2011.x
microsoft / excel_for_mac	2016	2016.x
microsoft / office_compatibility_pack	-	-
microsoft / excel	2010-sp2	2010-sp2.x
microsoft / excel	2007-sp3	2007-sp3.x

http://www.securityfocus.com/bid/93993
http://www.securitytracker.com/id/1037246
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-133

Vulnerability Database

289,599

CVE-2016-7213