Shane Huntley

**Name of the Vulnerable Software and Affected Versions** Microsoft Word versions 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT Word Viewer Office Compatibility Pack version SP3 Office for Mac version 2011 Word Automation Services on SharePoint Server versions 2010 SP1 and SP2 and 2013 Office Web Apps versions 2010 SP1 and SP2 Office Web Apps Server version 2013 **Description** A remote code execution issue exists due to the way Microsoft Word handles specially crafted files, allowing an attacker to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data. This issue has been exploited in the wild. An attacker who successfully exploits this issue could run arbitrary code as the current user, potentially taking complete control of the affected system if the current user has administrative rights. **Recommendations** For Microsoft Word versions 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT, update to a version that includes the fix for this issue. For Word Viewer, update to a version that includes the fix for this issue. For Office Compatibility Pack version SP3, update to a version that includes the fix for this issue. For Office for Mac version 2011, update to a version that includes the fix for this issue. For Word Automation Services on SharePoint Server versions 2010 SP1 and SP2 and 2013, update to a version that includes the fix for this issue. For Office Web Apps versions 2010 SP1 and SP2, update to a version that includes the fix for this issue. For Office Web Apps Server version 2013, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting the handling of specially crafted RTF files until a patch is available.