فا

‫ Microsoft Word RTF Memory Corruption Vulnerability

IRCAD2014033224
Number:IRCAD2014033224
Date: 2014/03/25
Software:
Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Small Business Edition
Microsoft Office 2003 Standard Edition
Microsoft Office 2003 Student and Teacher Edition
Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2013 RT
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
Microsoft Office for Mac 2011
Microsoft Office Web Apps
Microsoft Office Word 2007
Microsoft Office Word Viewer
Microsoft Office Word Viewer 2003
Microsoft SharePoint Server 2010
Microsoft SharePoint Server 2013
Microsoft Word 2003
Microsoft Word 2010
Microsoft Word 2013
Description
A vulnerability has been reported in Microsoft Word, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error when handling RTF-formatted data, which can be exploited to corrupt memory.
Successful exploitation of this vulnerability allows execution of arbitrary code.
Note: Reportedly, this vulnerability is currently actively exploited in the wild in limited targeted attacks.
Solution:
No official solution is currently available.
Resources:
Microsoft (KB2953095):
secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 8 فروردین 1393

امتیاز

امتیاز شما
تعداد امتیازها: 0