PT-2010-5185 · Microsoft · Office Converter Pack+2

Publicado

2010-12-16

Atualizado

2018-10-12

CVE-2010-3947

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Office XP SP3 Microsoft Office Converter Pack Microsoft Works 9

Description A heap-based buffer overflow exists in the TIFF image converter of the graphics filters, allowing remote attackers to execute arbitrary code via a crafted TIFF image in an Office document.

Recommendations For Microsoft Office XP SP3, update to a version that fixes the issue. For Microsoft Office Converter Pack, update to a version that fixes the issue. For Microsoft Works 9, update to a version that fixes the issue. As a temporary workaround, consider avoiding the use of TIFF images in Office documents until a patch is available.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2010-3947

Produtos afetados

Office Converter Pack

Office Xp Sp3

Works 9

PT-2010-5185 · Microsoft · Office Converter Pack+2

CVE-2010-3947

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5