virus logo Intrusion Prevention

MS.Office.Word.wwlib.dll.Memory.Corruption

description-logoDescription

This indicates an attack attempt to exploit a Memory Corruption vulnerability in Microsoft Office.
The vulnerability is due to improper handling of certain objects when the vulnerable software attempts to access a specially crafted doc file. An attacker can exploit this to execute arbitrary code within the context of the logged in user via a crafted doc file.

affected-products-logoAffected Products

Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2013 RT
Microsoft Office 2016
Microsoft Office for Mac 2011
Microsoft Office 2016 for Mac

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS16-088

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-11-22 15.729 Name:MS.
Office.
Wwlib.
Memory.
Corruption:MS.
Office.
Word.
wwlib.
dll.
Memory.
Corruption
2019-06-10 14.629 Severity:critical:high
ID 42708
Created Jul 12, 2016
Updated May 02, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2016-3281
Exploit Prediction Score 48.56%
Default Action drop
Active
Affected OS Windows, MacOS
Affected App MS_Office