2 matches found
iDefense Security Advisory 07.15.09: Microsoft Office Publisher 2007 Arbitrary Pointer Dereference Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 07.14.09 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 14, 2009 I. BACKGROUND Microsoft Office Publisher is a desktop publishing application. For more information, please visit following website:...
CVE-2009-0566
CVE-2009-0566 affects Microsoft Office Publisher 2007 SP1. The issue is an uninitialized/arbitrary pointer dereference in the PUBCONV.DLL module used to convert legacy Publisher files, leading to memory corruption and remote code execution when a crafted file is opened. Exploitation requires a us...