|
|
|
|
| |
Credit:
The information has been provided by ling & wushi of team509.
The original article can be found at: http://www.zerodayinitiative.com/advisories/ZDI-09-035
|
| |
Vulnerable Systems:
* Microsoft Office Word 2007 and earlier
The specific flaw exists within the parsing of vulnerable tags inside a Microsoft Word document. Microsoft Word trusts a length field read from the file which is used to read file contents into a buffer allocated on the stack. When an invalid length is present, a stack based buffer overflow occurs, resulting in the ability to execute arbitrary code.
Patch Availability:
Microsoft has issued an update to correct this vulnerability. More details can be found at:
http://www.microsoft.com/technet/security/bulletin/MS09-027.mspx
CVE Information:
CVE-2009-0563
Disclosure Timeline:
2008-07-08 - Vulnerability reported to vendor
2009-06-10 - Coordinated public release of advisory
|
|
|
|
|
