3 matches found
Microsoft Publisher PUB File Processing Memory Corruption (MS06-054; CVE-2006-0001)
There exists a stack overflow vulnerability in the Microsoft Publisher product. The flaw is triggered when a malicious PUB file is parsed by the affected component. A successful attack targeting this vulnerability may lead to the execution of arbitrary code. In an attack case where code injection...
Computer Terrorism (UK) :: Incident Response Centre - Microsoft Publisher Font Parsing Vulnerability
Computer Terrorism UK :: Incident Response Centre www.computerterrorism.com Security Advisory: CT12-09-2006-2.htm ============================================== Microsoft Publisher Font Parsing Vulnerability ============================================== Advisory Date: 12th, September 2006...
CVE-2006-0001
CVE-2006-0001 is a stack-based buffer overflow in Microsoft Publisher 2000–2003 triggered by parsing a crafted .pub font string, allowing a user-assisted remote attacker to execute arbitrary code. The vulnerability arises from insufficient validation during Publisher’s processing of Publisher doc...