‫ Microsoft Office Multiple Vulnerabilities

IRCAD2012051912
ID: IRCAD2012051912
Release Date: 2012-05-08
Criticality level: Highly critical
 
Software:
Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Small Business Edition
Microsoft Office 2003 Standard Edition
Microsoft Office 2003 Student and Teacher Edition
Microsoft Office 2007
Microsoft Office 2010
 
Description:
Multiple vulnerabilities have been reported in Microsoft Office, which can be exploited by malicious people to compromise a user's system.
1) Some errors exist when parsing TrueType fonts.
2) An error in the Office GDI+ library when handling EMF images embedded within a document can be exploited to cause a heap-based buffer overflow.
Successful exploitation of the vulnerabilities allows execution of arbitrary code.
 
Solution
Apply patches.
 
Microsoft Office
 
References:
MS12-034 (KB2681578, KB2598253, KB2596672, KB2596792, KB2589337):
 
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 20 اردیبهشت 1391

امتیاز

امتیاز شما
تعداد امتیازها:0