Buffer overflow vulnerability has been found in Microsoft Word

Posted: October 24, 2012 in Vulnerabilities
Tags: , , , ,

Microsoft WordVulnerability: buffer overflow in Microsoft Word

Vulnerability allows an attacker to carry out DoS attacks, and compromise a vulnerable system.

Member organizations Inj3ct0r hacker under the alias coolkaveh discovered a buffer overflow vulnerability in the stack in Microsoft Office Word 2010. The vulnerability allows an attacker to cause a denial of service or compromise a vulnerable system.

Vulnerability applies to MS Word 2007 and MS Word 2010. As a workaround, users can use the free tool from Microsoft Emet to prevent exploitation. Download PoC code vulnerability here.

At the time of publication of news, Microsoft did not respond to a public disclosure of the vulnerability. When new information Securitylab update this publication.

A detailed description of the vulnerability can be found at:

 Arbitrary code execution in Microsoft Word

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s