Tuesday, October 19, 2010

Microsoft Office Word: Uninitialized Pointer Vulnerability

Users of Microsoft Office Word please be advised of an Uninitialized Pointer vulnerability that has been identified.

To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

Amplify’d from www.criticalwatch.com
CVE-2010-2747: Microsoft Office Word Uninitialized Pointer Vulnerability
AFFECTED PRODUCTS

---------------------------



Microsoft Office 2004 for Mac

Microsoft Office XP Service Pack 3
DESCRIPTION

---------------------



VUPEN Vulnerability Research Team discovered a critical vulnerability

in Microsoft Office Word.



The vulnerability is caused by an uninitialized pointer when processing

certain data within a Word document, which could be exploited by remote

attackers to execute arbitrary code by tricking a user into opening a

specially crafted Word file.
Read more at www.criticalwatch.com
 

No comments:

Post a Comment