Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Office memory corruption
Published:25.03.2014
Source:
SecurityVulns ID:13627
Type:client
Threat Level:
9/10
Description:Microsoft Word RTF parsing 0-day vulnerability is exploited in-the-wild.
Affected:MICROSOFT : Office 2003
 MICROSOFT : Office 2007
 MICROSOFT : Office 2010
 MICROSOFT : Office for Mac 2011
 MICROSOFT : Office Web Apps 2010
 MICROSOFT : Office 2013
 MICROSOFT : Word Automation Services on Microsoft SharePoint Server 2010
 MICROSOFT : Word Automation Services on Microsoft SharePoint Server 2013
 MICROSOFT : Office Web Apps Server 2013
CVE:CVE-2014-1761 (Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Word Viewer; Office Compatibility Pack SP3; Office for Mac 2011; Word Automation Services on SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data, as exploited in the wild in March 2014.)
Files:Microsoft Security Advisory (2953095) Vulnerability in Microsoft Word Could Allow Remote Code Execution

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod