Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20044
HistoryAug 17, 2010 - 12:00 a.m.

Microsoft Word sprmCMajority记录解析栈溢出漏洞(MS10-056)

2010-08-1700:00:00
Root
www.seebug.org
13

0.712 High

EPSS

Percentile

97.7%

JSON

BUGTRAQ ID: 42136
CVE ID: CVE-2010-1900

Word是微软Office套件中的文字处理工具。

在解析Word文档中的sprmCMajority记录时,由于处理sprmCMajority sprm组没有对参数执行检查,攻击者可以控制写入到栈缓冲区中的数据数量,触发栈溢出。成功利用此漏洞的攻击者可完全控制受影响的系统。

Microsoft Office 2008 for Mac
Microsoft Office 2004 for Mac
Microsoft Word 2007 SP2
Microsoft Word 2003 SP3
Microsoft Word 2002 SP3
Microsoft Works 9.0
临时解决方法:

  • 使用Microsoft Office文件阻断策略以防止打开未知或不可信任来源的Office 2003及更早版本的文档。

  • 当打开来自未知来源或不可信来源的文件时使用Microsoft Office隔离转换环境(MOICE)。

  • 不要打开从不可信任来源接收到或从可信任来源意外接收到的Word文件。

厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(MS10-056)以及相应补丁:
MS10-056:Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638)
链接:http://www.microsoft.com/technet/security/bulletin/MS10-056.mspx?pf=true

Related

seebug 1
prion 1
zdi 1
packetstorm 1
cve 1
checkpoint_advisories 1
exploitpack 1
securityvulns 3
exploitdb 1
nessus 2
openvas 2
seebug
seebug
Microsoft Office Word 2007 - sprmCMajority Buffer Overflow
2014-07-01 00:00:00
prion
prion
Memory corruption
2010-08-11 18:47:00
zdi
zdi
Microsoft Office Word sprmCMajority Record Parsing Remote Code Execution Vulnerability
2010-08-11 00:00:00
packetstorm
packetstorm
Month Of Abysssec Undisclosed Bugs - Microsoft Word
2010-09-11 00:00:00
cve
cve
CVE-2010-1900
2010-08-11 18:47:00
checkpoint_advisories
checkpoint_advisories
Microsoft Word sprmCMajority Record Parsing Remote Code Execution (MS10-056; CVE-2010-1900)
2010-08-10 00:00:00
exploitpack
exploitpack
Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow
2010-09-11 00:00:00
securityvulns
securityvulns
ZDI-10-150: Microsoft Office Word sprmCMajority Record Parsing Remote Code Execution Vulnerability
2010-08-11 00:00:00
Microsoft Security Bulletin MS10-056 - Critical Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638)
2010-08-11 00:00:00
Microsoft Office multiple security vulnerabilities
2010-08-16 00:00:00
exploitdb
exploitdb
Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow
2010-09-11 00:00:00
nessus
nessus
MS10-056 / MS10-057: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2269638 / 2269707) (Mac OS X)
2010-10-20 00:00:00
MS10-056: Vulnerability in Microsoft Office Word Could Allow Remote Code Execution (2269638)
2010-08-11 00:00:00
openvas
openvas
Microsoft Office Word Remote Code Execution Vulnerabilities (2269638)
2010-08-11 00:00:00
Microsoft Office Word Remote Code Execution Vulnerabilities (2269638)
2010-08-11 00:00:00

0.712 High

EPSS

Percentile

97.7%

JSON
Related for SSV:20044
seebug1prion1zdi1packetstorm1cve1checkpoint_advisories1exploitpack1securityvulns3exploitdb1nessus2openvas2