Microsoft Word Malformed String Memory Corruption (MS07-060; CVE-2007-3899)

Microsoft Word is a popular word processing software. A remote code execution vulnerability has been identified in Microsoft Word for MAC. A remote attacker could trigger this flaw by convincing a victim to open a specially crafted Word Mac file with a malformed string. Successful exploitation of...

Microsoft Word工作区内存破坏远程代码执行漏洞（MS07-060）

BUGTRAQ ID: 25906 CVECAN ID: CVE-2007-3899 Word是Office办公套件中的文字处理软件。 Word处理特制Word文件的方式中存在一个远程执行代码漏洞，远程攻击者可能利用此漏洞通过诱使用户处理恶意文件控制用户系统。 如果用户打开带有畸形字符串的特制Word文件，该漏洞就可能允许远程执行指令。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 Microsoft Office 2004 for Mac Microsoft Word 2002 SP3 Microsoft Word 2000 SP3 临时解决方法：...

MS07-060: Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (942695)

The remote host is running a version of Microsoft Word that may allow arbitrary code to be run. An attacker may use this to execute arbitrary code on this host. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it open it. Then a bug in the font...