4 matches found
CVE-2009-3135
Microsoft Word Remote Code Execution (CVE-2009-3135) affects Word 2002 SP3, Word 2003 SP3, Word 2004/2008 for Mac, Open XML File Format Converter for Mac, Word Viewer 2003 SP3, and Word Viewer. The vulnerability is a stack-based buffer overflow in Word’s File Information Block (FIB) parsing, whic...
Microsoft Word记录解析栈溢出漏洞(MS09-068)
BUGTRAQ ID: 36950 CVE ID: CVE-2009-3135 Word是微软Office套件中的文件处理工具。 Word处理包含有畸形文件信息块(FIB)结构的特制Word文件的方式中存在栈溢出。成功利用此漏洞的攻击者可以完全控制受影响的系统,攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Word Viewer 200...
iDefense Security Advisory 11.10.09: Microsoft Word FIB Processing Stack Buffer Overflow Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 11.10.09 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 10, 2009 I. BACKGROUND Microsoft Word is a word processing application that is part of the Microsoft Office suite of products. For more information about...
MS09-068: Vulnerability in Microsoft Office Word Could Allow Remote Code Execution (976307)
The remote Windows host is running a version of Microsoft Word or Word Viewer that is affected by a memory corruption vulnerability. If an attacker can trick a user on the affected host into opening a specially crafted Word file, he could leverage this issue to execute arbitrary code subject to t...