5 matches found
Microsoft Office PICT Filter Map Structure Memory Corruption - Ver2 (CVE-2008-3021)
A memory corruption vulnerability has been reported in Microsoft Office. The vulnerability is due to a memory corruption error when a malformed PICT file is opened by any of the affected Microsoft Office applications. Successful exploitation of this vulnerability could allow a remote attacker to...
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption http://www.zerodayinitiative.com/advisories/ZDI-08-049 August 12, 2008 -- CVE ID: CVE-2008-3021 -- Affected Vendors: Microsoft -- Affected Products: Microsoft File Format Vulnerability -- TippingPointTM IPS Customer...
MS08-044: Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (924090)
The remote host is running a version of some Microsoft Office filters that are subject to various flaws that could allow arbitrary code to be run. An attacker may use these to execute arbitrary code on this host. To succeed, the attacker would have to send a rogue file to a user of the remote...
CVE-2008-3021
Microsoft Office 2000 SP3, XP SP3, and 2003 SP2; Office Converter Pack; and Works 8 do not properly parse the length of a PICT file, which allows remote attackers to execute arbitrary code via a crafted PICT file with an invalid bitsperpixel field, aka the "PICT Filter Parsing Vulnerability," a...
CVE-2008-3021
CVE-2008-3021 affects Microsoft Office products (Office 2000 SP3, XP SP3, 2003 SP2, Office Converter Pack, Works 8) where the PICT image filter parses the length of PICT files. The root cause is a memory/length handling issue in the PICT filter, leading to remote code execution when a crafted PIC...