Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2008-0108 to a friend New vulnerability? New tool? Tell us	CVE-2008-0108 Vulnerabilities in Microsoft Works File Converter Allows Code Execution (MS08-011)     Credit: The information has been provided by Microsoft Product Security. The original article can be found at: http://www.microsoft.com/technet/security/bulletin/ms08-011.mspx Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2008-0108 Details Check for CVE-2008-0108 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Affected Software Office Suite and Other Affected Software - Component - Maximum Security Impact - Aggregate Severity Rating - Bulletins Replaced by this Update  * Microsoft Office 2003 Service Pack 2 - Microsoft Works 6 File Converter (KB943973) - Remote Code Execution - Moderate - None  * Microsoft Office 2003 Service Pack 3 - Microsoft Works 6 File Converter (KB943973) - Remote Code Execution - Moderate - None  * Microsoft Works 8.0 - Microsoft Works 6 File Converter (KB943973) - Remote Code Execution - Important - None  * Microsoft Works Suite 2005 - Microsoft Works 6 File Converter (KB943973) - Remote Code Execution - Important - None Non-Affected Software  * Microsoft Works 8.5  * Microsoft Works 9.0  * Microsoft Works Suite 2006  * 2007 Microsoft Office System  * Microsoft Office 2000  * Microsoft Office XP Microsoft Works File Converter Input Validation Vulnerability - CVE-2007-0216 A remote code execution vulnerability exists in Microsoft Works File Converter due to the way that it improperly validates section length headers with the .wps format. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts. CVE Information: CVE-2007-0216 Microsoft Works File Converter Index Table Vulnerability - CVE-2008-0105 A remote code execution vulnerability exists in Microsoft Works File Converter due to the way that it improperly validates section header index table information with the .wps file format. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts. CVE Information: CVE-2008-0105 Microsoft Works File Converter Field Length Vulnerability - CVE-2008-0108 A remote code execution vulnerability exists in Microsoft Works File Converter due to the way that it improperly validates various field lengths information with the .wps file format. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts. CVE Information: CVE-2008-0108  Comments on CVE-2008-0108:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2010 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®