PT-2005-1111 · Microsoft · Office Word+2

Published

2005-01-07

Updated

2016-10-18

CVE-1999-1431

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Appstation (affected versions not specified)

Description The issue allows users to bypass the "Run only allowed apps" policy. This can be achieved by starting Explorer from certain Office 97 applications, such as Word, and then installing software into the TEMP directory. The installed software can then be renamed to mimic an allowed application, for example, Winword.exe.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1431

Affected Products

Explorer

Office 97

Office Word

PT-2005-1111 · Microsoft · Office Word+2

CVE-1999-1431

Related Identifiers

Affected Products

References · 5