ðòïåëôù 

  áòèé÷ 

Apache-Talk @lexa.ru 

Inet-Admins @info.east.ru 

Filmscanners @halftone.co.uk 

Security-alerts @yandex-team.ru 

nginx-ru @sysoev.ru 

  óôáôøé 

  ðåòóïîáìøîïå 

  ðòïçòáííù 

ðéûéôå
ðéóøíá














     áòèé÷ :: Security-alerts
Security-Alerts mailing list archive (security-alerts@yandex-team.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[security-alerts] Microsoft Word Unspecified Memory Corruption Vulnerability


Secunia Advisory:       SA23232          
Release Date:   2006-12-06

Critical:       
Extremely critical
Impact:         System access
Where:  From remote
Solution Status:        Unpatched

Software:       Microsoft Office 2000
Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Small Business Edition
Microsoft Office 2003 Standard Edition
Microsoft Office 2003 Student and Teacher Edition
Microsoft Office 2004 for Mac
Microsoft Office X for Mac
Microsoft Office XP
Microsoft Word 2000
Microsoft Word 2002
Microsoft Word 2003
Microsoft Word 2003 Viewer
Microsoft Works Suite 2004
Microsoft Works Suite 2005
Microsoft Works Suite 2006

CVE reference:  CVE-2006-5994 (Secunia mirror)

        


Description:
A vulnerability has been reported in Microsoft Word, which potentially
can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error in the handling
of Word documents and can be exploited to cause a memory corruption.

Successful exploitation may allow execution of arbitrary code.

Solution:
Do not open or save untrusted Word documents.

Provided and/or discovered by:
Discovered as a 0-day.

Original Advisory:
Microsoft:
http://www.microsoft.com/technet/security/advisory/929433.mspx
http://blogs.technet.com/msrc/archive...-security-advisory-929433-posted
.aspx

 



Copyright © Lexa Software, 1996-2009.