Microsoft Office File Processing Malformed String Arbitrary Code Execution

2006-07-11T15:34:10
ID OSVDB:27148
Type osvdb
Reporter OSVDB
Modified 2006-07-11T15:34:10

Description

Vulnerability Description

A local overflow exists in Office, Project, Visio and Office for Mac. The applications fail to validate Office files that contain malformed strings related to record lengths resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Short Description

A local overflow exists in Office, Project, Visio and Office for Mac. The applications fail to validate Office files that contain malformed strings related to record lengths resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Security Tracker: 1016469 Secunia Advisory ID:21012 Related OSVDB ID: 27149 Related OSVDB ID: 27150 Microsoft Security Bulletin: MS06-038 Microsoft Knowledge Base Article: 917284 Keyword: aka "Microsoft Office Parsing Vulnerability," ISS X-Force ID: 27607 FrSIRT Advisory: ADV-2006-2756 CVE-2006-1316 CERT VU: 580036 Bugtraq ID: 18912