3 matches found
Microsoft Word 2003 - Record Parsing Buffer Overflow (MS09-027) (Metasploit)
$Id: ms09-027 10477 2011-04-13 11:59:02Z mc $ This file is not part of the Metasploit Framework and may not be subject to redistribution and commercial restrictions. TODO some testing to find the real banned characters and maxlen add those parameters to the .rb file drop in appropriate directory...
VUPEN Security - Microsoft Office Word Document Parsing Buffer Overflow Vulnerability
VUPEN Security Research Advisory - VUPEN-SR-2008-06 Advisory URL: http://www.vupen.com/english/advisories/2009/1546 June 9, 2009 I. BACKGROUND ----------------------- Microsoft Office Word, included in the Microsoft Office system, is a powerful authoring program that gives you the ability to crea...
Microsoft Word畸形记录解析栈溢出漏洞(MS09-027)
BUGTRAQ ID: 35190,35188 CVECAN ID: CVE-2009-0565,CVE-2009-0563 Word是微软Office套件中的文件处理工具。 Word在处理包含有无效长度字段或记录的特制Word文件的方式存在栈溢出漏洞。成功利用此漏洞的攻击者可以完全控制受影响的系统,攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac...