Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Office Publisher uninitialized pointer dereference
updated since 14.07.2009
Published:16.07.2009
Source:
SecurityVulns ID:10070
Type:client
Threat Level:
5/10
Description:Uninitialized pointer dereference on older Publisher format conversion.
Affected:MICROSOFT : Office 2007
CVE:CVE-2009-0566 (Microsoft Office Publisher 2007 SP1 does not properly calculate object handler data for Publisher files, which allows remote attackers to execute arbitrary code via a crafted file in a legacy format that triggers memory corruption, aka "Pointer Dereference Vulnerability.")
Original documentdocumentIDEFENSE, iDefense Security Advisory 07.15.09: Microsoft Office Publisher 2007 Arbitrary Pointer Dereference Vulnerability (16.07.2009)
 documentMICROSOFT, Microsoft Security Bulletin MS09-030 - Important Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (969516) (14.07.2009)
Files: Microsoft Security Bulletin MS09-030 - Important Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (969516)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod