Number:IRCAD2014043244
Date: 2014/04/08
Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Small Business Edition
Microsoft Office 2003 Standard Edition
Microsoft Office 2003 Student and Teacher Edition
Microsoft Office 2007
Microsoft Office Publisher 2003
Microsoft Office Publisher 2007
A vulnerability has been reported in Microsoft Publisher, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error within pubconv.dll. This can be exploited to corrupt memory and cause an invalid value.
Successful exploitation allows execution of arbitrary code.
Solution:
Apply updates.
MS14-020 (KB2878299, KB2817565):
نظرات