HTTP: Microsoft Office Word CVE-2019-0561 Information Disclosure

This signature detects attempts to exploit a known vulnerability against the Word component of Microsoft Office. Attackers can disclose information which could be used to further compromise the target system.

Extended Description

An information disclosure vulnerability exists when Microsoft Word macro buttons are used improperly, aka "Microsoft Word Information Disclosure Vulnerability." This affects Microsoft Word, Office 365 ProPlus, Microsoft Office, Word.

Affected Products

Microsoft office_365_proplus

References

BugTraq: 106399

CVE: CVE-2019-0561

Short Name
HTTP:STC:DL:CVE-2019-0561-ID
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2019-0561 Disclosure Information Microsoft Office Word bid:106399
Release Date
06/06/2019
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Microsoft

CVSS Score

4.3

Found a potential security threat?