Secunia Advisory SA30975Microsoft Word Smart Tag Invalid Length Processing Vulnerability
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Description
A vulnerability has been discovered in Microsoft Word, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the processing of smart tag length values, which can be exploited to cause memory corruption via a specially crafted document. Successful exploitation allows execution of arbitrary code. NOTE: According to the vendor, the vulnerability is currently being actively exploited. Solution Provided and/or discovered by Deep Links Do you have additional information related to this advisory?Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
103 views | ![]() |
TYPO3 The official twitter tweet button for your page Extension Cross-Site Scripting Vulnerability![]() | |