Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:3081F42C9DA71ABDA21165E83A2D5B17
HistoryAug 12, 2010 - 12:00 a.m.

Microsoft Office Word RTF Parsing Engine Memory Corruption

2010-08-1200:00:00
SAINT Corporation
www.saintcorporation.com
14

0.949 High

EPSS

Percentile

99.1%

JSON

Added: 08/12/2010
CVE: CVE-2010-1901
BID: 42132
OSVDB: 66995

Background

Microsoft Office Word is Microsoft’s word processing software, released as a component of Microsoft Office suite.

Problem

Microsoft Office Word does not perform sufficient data validation when handling rich text data. When Word opens and parses a specially crafted RTF e-mail message or file, it may corrupt memory in such a way that an attacker could execute arbitrary code.

Resolution

Install the patch referenced in Microsoft Security Bulletin 10-056.

References

<http://www.microsoft.com/technet/security/bulletin/MS10-056.mspx&gt;

Limitations

Exploit works on Microsoft Office Word 2003 SP3.

This exploit requires the Compress-Zlib PERL module from CPAN.

This exploit is not 100% reliable since the exploit script relies on a heap memory address that is not always fixed.

Platforms

Windows

Related

saint 3
seebug 1
cve 1
checkpoint_advisories 1
prion 1
securityvulns 3
nessus 2
openvas 2
saint
saint
Microsoft Office Word RTF Parsing Engine Memory Corruption
2010-08-12 00:00:00
Microsoft Office Word RTF Parsing Engine Memory Corruption
2010-08-12 00:00:00
Microsoft Office Word RTF Parsing Engine Memory Corruption
2010-08-12 00:00:00
seebug
seebug
Microsoft Word RTFθ§£ζžεΌ•ζ“ŽθΏœη¨‹ε†…ε­˜η ΄εζΌζ΄žοΌˆMS10-056οΌ‰
2010-08-17 00:00:00
cve
cve
CVE-2010-1901
2010-08-11 18:47:00
checkpoint_advisories
checkpoint_advisories
Microsoft Word RTF Parsing Engine Memory Corruption (MS10-056; CVE-2010-1901)
2010-08-10 00:00:00
prion
prion
Memory corruption
2010-08-11 18:47:00
securityvulns
securityvulns
iDefense Security Advisory 08.10.10: Microsoft Office RTF Parsing Engine Memory Corruption Vulnerability
2010-08-16 00:00:00
Microsoft Security Bulletin MS10-056 - Critical Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution &#40;2269638&#41;
2010-08-11 00:00:00
Microsoft Office multiple security vulnerabilities
2010-08-16 00:00:00
nessus
nessus
MS10-056 / MS10-057: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2269638 / 2269707) (Mac OS X)
2010-10-20 00:00:00
MS10-056: Vulnerability in Microsoft Office Word Could Allow Remote Code Execution (2269638)
2010-08-11 00:00:00
openvas
openvas
Microsoft Office Word Remote Code Execution Vulnerabilities (2269638)
2010-08-11 00:00:00
Microsoft Office Word Remote Code Execution Vulnerabilities (2269638)
2010-08-11 00:00:00

0.949 High

EPSS

Percentile

99.1%

JSON
Related for SAINT:3081F42C9DA71ABDA21165E83A2D5B17
saint3seebug1cve1checkpoint_advisories1prion1securityvulns3nessus2openvas2