MS.Office.OLE.Insecure.Library.Loading

description-logoDescription

This indicates an attack attempt to exploit a remote Code Execution vulnerability in Microsoft Office.
The vulnerability is due to the way the vulnerable application loads DLL file. A remote attacker can exploit this to trick an unsuspecting user into opening a harmless file which leads to loading and executing of a malicious DLL.

affected-products-logoAffected Products

Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2013 RT
Microsoft Office 2016

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrades or patches from the vendor:
http://technet.microsoft.com/security/bulletin/MS16-148

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)