فا

‫ Microsoft Office Publisher Converter Pointer Dereference Vulnerability

IRCAD2014043244

Number:IRCAD2014043244
Date: 2014/04/08

Software:

Microsoft Office 2003 Professional Edition

Microsoft Office 2003 Small Business Edition

Microsoft Office 2003 Standard Edition

Microsoft Office 2003 Student and Teacher Edition

Microsoft Office 2007

Microsoft Office Publisher 2003

Microsoft Office Publisher 2007

Description

A vulnerability has been reported in Microsoft Publisher, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error within pubconv.dll. This can be exploited to corrupt memory and cause an invalid value.

Successful exploitation allows execution of arbitrary code.

Solution:

Apply updates.

Resources:

MS14-020 (KB2878299, KB2817565):

secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 20 فروردین 1393

امتیاز

امتیاز شما
تعداد امتیازها: 0