Microsoft Office mso.dll Malformed Record Handling Arbitrary Code Execution

2006-10-10T15:49:18
ID OSVDB:29429
Type osvdb
Reporter Sowhat(sowhat@secway.org)
Modified 2006-10-10T15:49:18

Description

Vulnerability Description

A remote overflow exists in Microsoft Office. The product fails when parsing certain records due an unspecified error in 'mso.dll' resulting in a buffer overflow. With a specially crafted request, an attacker can allows execution of arbitrary code resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft Corporation has released a patch to address this vulnerability.

Short Description

A remote overflow exists in Microsoft Office. The product fails when parsing certain records due an unspecified error in 'mso.dll' resulting in a buffer overflow. With a specially crafted request, an attacker can allows execution of arbitrary code resulting in a loss of integrity.

References:

Security Tracker: 1017034 Secunia Advisory ID:22339 Related OSVDB ID: 29428 Related OSVDB ID: 29430 Related OSVDB ID: 29427 Microsoft Security Bulletin: MS06-062 Microsoft Knowledge Base Article: 922581 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0156.html CVE-2006-3864