PT-2007-5126 · Microsoft · Office For Mac+1
Liu Kun-Hao
·
Publicado
2007-10-09
·
Atualizado
2018-10-30
·
CVE-2007-3899
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
Microsoft Word versions 2000 SP3, 2002 SP3
Microsoft Office for Mac version 2004
Description:
A remote code execution issue exists in the way that Word handles specially crafted Word files. This could allow remote code execution if a user opens a specially crafted Word file with a malformed string. Users with fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Recommendations:
For Microsoft Word 2000 SP3, update to a version that is not affected by this issue.
For Microsoft Word 2002 SP3, update to a version that is not affected by this issue.
For Microsoft Office for Mac 2004, update to a version that is not affected by this issue.
Correção
RCE
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Office For Mac
Office Word