CVE-2011-3411

Name of the Vulnerable Software and Affected Versions Microsoft Publisher version 2003 SP3

Description A remote code execution issue exists due to the incorrect handling of values in memory when parsing Publisher files. This could allow an attacker to execute arbitrary code by creating a specially crafted Publisher file. The attacker could convince the user to open this file, potentially via an email attachment or a compromised website. If the user has administrative rights, the attacker could gain complete control of the system, allowing them to install programs, view, change, or delete data, or create new accounts with full user rights. Users with fewer user rights may be less affected.

Recommendations For Microsoft Publisher 2003 SP3, consider avoiding the use of potentially malicious Publisher files until a fix is available. As a temporary workaround, restrict the use of Microsoft Publisher for opening files from untrusted sources.