CVE-2016-3313

CVE Database · CVE-2016-3313

CVE-2016-3313

· N/AModified

CVSS v3.1

N/A

EPSS

49.83%

Published

Aug 9, 2016

Modified

May 6, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Word 2007/2010/2013/2016 - Out-of-Bounds Read Code Execution (MS16-099)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016, Word 2016 for Mac, and Word Viewer allow remote attackers to execute arbitrary code via a crafted file, aka "Microsoft Office Memory Corruption Vulnerability."

Weaknesses (CWE)

CWE-119

Affected Products (6)

microsoft · officevulnerable

microsoft · word_for_macvulnerable

microsoft · word_viewervulnerable

References (8)

http://www.securityfocus.com/bid/92289

http://www.securitytracker.com/id/1036559

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-099

https://www.exploit-db.com/exploits/40224/

http://www.securityfocus.com/bid/92289

http://www.securitytracker.com/id/1036559

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-099

https://www.exploit-db.com/exploits/40224/

KEV Catalog EPSS Scores Vendors All CVEs