Lucene search
SAINT CorporationSAINT:36A600FBE58C49B77D63E7483724AF81HistoryApr 30, 2010 - 12:00 a.m.
Microsoft Publisher File Conversion Textbox buffer overflow
2010-04-3000:00:00
SAINT Corporation
www.saintcorporation.com
14
0.941 High
EPSS
Percentile
98.9%
Added: 04/30/2010
CVE: CVE-2010-0479
BID: 39347
OSVDB: 63748
Background
Microsoft Office Publisher, part of the Microsoft Office suite, is a product for creating publications and marketing materials.
Problem
A buffer overflow vulnerability allows command execution when a user loads a Publisher 97 file containing a specially crafted Textbox item.
Resolution
Apply the patch referenced in Microsoft Security Bulletin 10-023.
References
<http://www.microsoft.com/technet/security/bulletin/ms10-023.mspx>
Limitations
Exploit works on Microsoft Office Publisher 2007 SP2 and requires a user to open the exploit file.
Platforms
Windows XP
Related
cve
cve
CVE-2010-0479
2010-04-14 16:00:00
saint
saint
Microsoft Publisher File Conversion Textbox buffer overflow
2010-04-30 00:00:00
Microsoft Publisher File Conversion Textbox buffer overflow
2010-04-30 00:00:00
Microsoft Publisher File Conversion Textbox buffer overflow
2010-04-30 00:00:00
seebug
seebug
Microsoft Office Publisher文件转换TextBox处理缓冲区溢出漏洞(MS10-023)
2010-04-14 00:00:00
nessus
nessus
openvas
openvas
Microsoft Office Publisher Remote Code Execution Vulnerability (981160)
2010-04-14 00:00:00
Microsoft Office Publisher Remote Code Execution Vulnerability (981160)
2010-04-14 00:00:00
zdi
zdi
cvelist
cvelist
CVE-2010-0479
2010-04-14 15:44:00
prion
prion
Buffer overflow
2010-04-14 16:00:00
securityvulns
securityvulns
checkpoint_advisories
checkpoint_advisories