Thread-topic: [SA22339] Microsoft Office Multiple Code Execution Vulnerabilities
>
> TITLE:
> Microsoft Office Multiple Code Execution Vulnerabilities
>
> SECUNIA ADVISORY ID:
> SA22339
>
> VERIFY ADVISORY:
>
>
> CRITICAL:
> Highly critical
>
> IMPACT:
> System access
>
> WHERE:
> From remote
>
> SOFTWARE:
> Microsoft Word 2003 Viewer
>
> Microsoft Word 2003
>
> Microsoft Word 2002
>
> Microsoft Word 2000
>
> Microsoft Visio 2003
>
> Microsoft Visio 2002
>
> Microsoft Publisher 2003
>
> Microsoft Publisher 2002
>
> Microsoft Publisher 2000
>
> Microsoft Project 2003
>
> Microsoft Project 2002
>
> Microsoft Project 2000
>
> Microsoft Powerpoint 2003
>
> Microsoft PowerPoint 2002
>
> Microsoft PowerPoint 2000
>
> Microsoft Outlook 2003
>
> Microsoft Outlook 2002
>
> Microsoft Outlook 2000
>
> Microsoft OneNote 2003
>
> Microsoft Office XP
>
> Microsoft Office X for Mac
>
> Microsoft Office 2004 for Mac
>
> Microsoft Office 2003 Student and Teacher Edition
>
> Microsoft Office 2003 Standard Edition
>
> Microsoft Office 2003 Small Business Edition
>
> Microsoft Office 2003 Professional Edition
>
> Microsoft Office 2000
>
> Microsoft InfoPath 2003
>
> Microsoft Access 2000
>
> Microsoft Access 2002
>
> Microsoft Access 2003
>
> Microsoft Excel 2000
>
> Microsoft Excel 2002
>
> Microsoft Excel 2003
>
> Microsoft Excel Viewer 2003
>
> Microsoft Frontpage 2000
>
> Microsoft Frontpage 2002
>
> Microsoft Frontpage 2003
>
>
> DESCRIPTION:
> Multiple vulnerabilities have been reported in Microsoft Office,
> which can be exploited by malicious people to compromise a user's
> system.
>
> 1) An unspecified boundary error within the parsing of certain
> strings can be exploited to cause a buffer overflow via a specially
> crafted Office document.
>
> 2) A boundary error when parsing chart records can be exploited to
> cause a buffer overflow via a specially crafted Office document.
>
> 3) An unspecified boundary error when parsing certain records can be
> exploited to cause a buffer overflow via a specially crafted Office
> document.
>
> 4) A boundary error within the parsing of Smart Tags can be exploited
> to cause a buffer overflow via a specially crafted Office document.
>
> Successful exploitation of the vulnerabilities allows execution of
> arbitrary code.
>
> SOLUTION:
> Apply patches.
>
> Microsoft Office 2000 SP3:
>
> 1E4-7859-4C7E-898E-1CF05014885B
>
> Microsoft Office XP SP3:
>
> 063-D88D-4E45-8555-4D1C4730F5C8
>
> Microsoft Office 2003 SP1/SP2:
>
> F68-EC0D-4768-9846-B16B3DADF247
>
> Microsoft Project 2000 SR1:
>
> 870-CD03-45CA-877B-B5AD2C873FE5
>
> Microsoft Project 2002 SP1:
>
> A18-D237-4BB0-9464-CE31B6AE52D6
>
> Microsoft Visio 2002 SP2:
>
> 660-0FC5-43E5-9683-B6DAE96136BB
>
> Microsoft Office 2004 for Mac:
>
>
> Microsoft Office v. X for Mac:
>
>
> PROVIDED AND/OR DISCOVERED BY:
> 1) The vendor credits Dejun Meng, Fortinet.
> 2) The vendor credits Arnaud Dovi.
> 3) The vendor credits Sowhat, Nevis Labs.
>
> ORIGINAL ADVISORY:
> MS06-062 (KB922581):
>
>
