|
 |
|
Microsoft Office Multiple Code Execution Vulnerabilities
|
|
|
|
|
Secunia Advisory:
|
SA22339
|
|
|
Release Date:
|
2006-10-10
|
|
Last Update:
|
2008-05-15
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Microsoft Access 2000
Microsoft Access 2002
Microsoft Access 2003
Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel Viewer 2003
Microsoft Frontpage 2000
Microsoft Frontpage 2002
Microsoft Frontpage 2003
Microsoft InfoPath 2003
Microsoft Office 2000
Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Small Business Edition
Microsoft Office 2003 Standard Edition
Microsoft Office 2003 Student and Teacher Edition
Microsoft Office 2004 for Mac
Microsoft Office X for Mac
Microsoft Office XP
Microsoft OneNote 2003
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Outlook 2003
Microsoft PowerPoint 2000
Microsoft PowerPoint 2002
Microsoft Powerpoint 2003
Microsoft Project 2000
Microsoft Project 2002
Microsoft Project 2003
Microsoft Publisher 2000
Microsoft Publisher 2002
Microsoft Publisher 2003
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Word 2000
Microsoft Word 2002
Microsoft Word 2003
Microsoft Word Viewer 2003
|
| | CVE reference: | CVE-2006-3434 (Secunia mirror)
CVE-2006-3650 (Secunia mirror)
CVE-2006-3864 (Secunia mirror)
CVE-2006-3868 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Multiple vulnerabilities have been reported in Microsoft Office, which can be exploited by malicious people to compromise a user's system.
1) An unspecified boundary error within the parsing of certain strings can be exploited to cause a buffer overflow via a specially crafted Office document.
2) A boundary error when parsing chart records can be exploited to cause a buffer overflow via a specially crafted Office document.
3) An unspecified boundary error in mso.dll when parsing certain records can be exploited to cause a buffer overflow via a specially crafted Office document.
4) A boundary error within the parsing of Smart Tags can be exploited to cause a buffer overflow via a specially crafted Office document.
Successful exploitation of the vulnerabilities allows execution of arbitrary code.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Apply patches.
Microsoft Office 2000 SP3:
http://www.microsoft.com/downloads/de...=E0C7E1E4-7859-4C7E-898E-1CF05014885B
Microsoft Office XP SP3:
http://www.microsoft.com/downloads/de...=958EE063-D88D-4E45-8555-4D1C4730F5C8
Microsoft Office 2003 SP1/SP2:
http://www.microsoft.com/downloads/de...=0D399F68-EC0D-4768-9846-B16B3DADF247
Microsoft Project 2000 SR1:
http://www.microsoft.com/downloads/de...=266A9870-CD03-45CA-877B-B5AD2C873FE5
Microsoft Project 2002 SP1:
http://www.microsoft.com/downloads/de...=A77DEA18-D237-4BB0-9464-CE31B6AE52D6
Microsoft Visio 2002 SP2:
http://www.microsoft.com/downloads/de...=FD4B7660-0FC5-43E5-9683-B6DAE96136BB
Microsoft Office 2004 for Mac:
http://www.microsoft.com/mac/
Microsoft Office v. X for Mac:
http://www.microsoft.com/mac/
Provided and/or discovered by:
1) Dejun Meng, Fortinet Security Research Team.
2) The vendor credits Arnaud Dovi.
3) Sowhat, Nevis Labs.
Changelog:
2006-10-11: Added links to Fortinet, ZDI, and Sowhat advisories. Added links to US-CERT.
2006-10-12: Added US-CERT reference.
2008-05-15: Updated Fortinet link.
Original Advisory:
MS06-062 (KB922581):
http://www.microsoft.com/technet/security/Bulletin/MS06-062.mspx
Fortinet:
http://www.fortiguardcenter.com/advisory/FGA-2006-27.html
Sowhat:
http://secway.org/advisory/AD20061010.txt
ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-06-034.html
Other References:
US-CERT VU#534276:
http://www.kb.cert.org/vuls/id/534276
US-CERT VU#234900:
http://www.kb.cert.org/vuls/id/234900
US-CERT VU#176556:
http://www.kb.cert.org/vuls/id/176556
US-CERT VU#807780:
http://www.kb.cert.org/vuls/id/807780
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
87 Related Secunia Security Advisories, displaying 10
|
|
|
1. Microsoft Word Unspecified Code Execution Vulnerability
|
|
2. Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
|
|
3. Microsoft Publisher Object Handler Validation Vulnerability
|
|
4. Microsoft Word Two Code Execution Vulnerabilities
|
|
5. Microsoft Visio Two File Processing Vulnerabilities
|
|
6. Microsoft Project Unspecified Code Execution Vulnerability
|
|
7. Microsoft Office Web Components Two Vulnerabilities
|
|
8. Microsoft Office Two Code Execution Vulnerabilities
|
|
9. Microsoft Outlook "mailto:" URI Handling Vulnerability
|
|
10. Microsoft Office Object Parsing Memory Corruption Vulnerability
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
