CVE-2009-0566

Name of the Vulnerable Software and Affected Versions Microsoft Office Publisher 2007 SP1

Description The issue arises from the improper calculation of object handler data for Publisher files, allowing remote attackers to execute arbitrary code via a crafted file in a legacy format, triggering memory corruption. A remote code execution vulnerability exists in the way that Microsoft Office Publisher opens, imports, and converts files created in versions older than Microsoft Office Publisher 2007. An attacker could exploit this by creating a specially crafted Publisher file that could be included as an e-mail attachment or hosted on a specially crafted or compromised Web site. If a user were logged on with administrative user rights, an attacker who successfully exploited this could take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office Publisher 2007 SP1, consider applying security updates or patches to resolve the issue. As a temporary workaround, avoid opening or importing files from untrusted sources, and restrict access to the Publisher application until a patch is available.