Vulnerability: buffer overflow in Microsoft Word
Vulnerability allows an attacker to carry out DoS attacks, and compromise a vulnerable system.
Member organizations Inj3ct0r hacker under the alias coolkaveh discovered a buffer overflow vulnerability in the stack in Microsoft Office Word 2010. The vulnerability allows an attacker to cause a denial of service or compromise a vulnerable system.
Vulnerability applies to MS Word 2007 and MS Word 2010. As a workaround, users can use the free tool from Microsoft Emet to prevent exploitation. Download PoC code vulnerability here.
At the time of publication of news, Microsoft did not respond to a public disclosure of the vulnerability. When new information Securitylab update this publication.
A detailed description of the vulnerability can be found at:
