#VU295 Information Disclosure in Microsoft OneNote in Microsoft products - CVE-2016-3315

Cybersecurity Help s.r.o.

Published: 2016-08-10 | Updated: 2017-01-09

Vulnerability identifier: #VU295

Vulnerability risk: Low

CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2016-3315

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Microsoft Office
Client/Desktop applications / Office applications
Microsoft OneNote
Client/Desktop applications / Office applications
Microsoft Office for Mac
Client/Desktop applications / Office applications

Vendor: Microsoft

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to out-of-bound read when handling objects in memory. A remote attacker can create a specially crafted OneNote file and convince a victim to open it.

Successful exploitation of this vulnerability my allow an attacker to obtain potentially sensitive information but requires knowledge of the specific location of OneNote objects in memory.

Vulnerable software versions

: 2007, 2010, 2013 RT - 2013, 2016

Microsoft OneNote: 2007 Service Pack 3, 2010 Service Pack 2, 2013 RT Service Pack 1, 2013 Service Pack 1, 2016

Microsoft Office for Mac: 2016

External links
https://technet.microsoft.com/en-us/library/security/ms16-099.aspx

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Microsoft OneNote Information Disclosure Vulnerability

Multiple vulnerabilities in Microsoft Office

Security Update for Microsoft Office