Users of Microsoft Office please be advised of an HtmlDlgHelper class memory corruption vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)
Amplify’d from www.criticalwatch.com
CORE-2010-0517: [CORE-2010-0517] Microsoft Office HtmlDlgHelper class memory corruption
*Vulnerability Description*
Microsoft Windows is prone to a memory corruption vulnerability when
instantiating the 'HtmlDlgHelper Class Object' in a Microsoft Office
Document (ie: .XLS, .DOC). The affected vulnerable module is part of
Internet Explorer ('mshtmled.dll'). This vulnerability could be used by
a remote attacker to execute arbitrary code with the privileges of the
user that opened the malicious file.
Read more at www.criticalwatch.com
See this Amp at http://bit.ly/bl9a8r
No comments:
Post a Comment