Intrusion Prevention

MS.Office.wwlib.dll.RTF.File.Information.Disclosure

Description

This indicates an attack attempt to exploit a Information Disclosure vulnerability in Microsoft Office.
The vulnerability is caused by an error when handling a malicious RTF file. An attacker can exploit this to gain sensitive information from vulnerable systems via a crafted RTF file.

Affected Products

Microsoft Word 2007 Service Pack 3(3115195)
Microsoft Office 2010 Service Pack 2 (32-bit editions)(3115198)
Microsoft Office 2010 Service Pack 2 (64-bit editions)(3115198)
Microsoft Word 2010 Service Pack 2 (32-bit editions)(3115243)
Microsoft Word 2010 Service Pack 2 (64-bit editions)(3115243)
Microsoft Office Compatibility Pack Service Pack 3(3115194)
Microsoft Word Viewer(3115187)

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS16-070

CVE References

CVE-2016-3234