PT-2010-5186 · Microsoft · Office Converter Pack+1

Carsten Eiram

Published

2010-12-16

Updated

2018-10-12

CVE-2010-3949

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Office XP SP3 Microsoft Office Converter Pack

Description A buffer overflow issue exists in the TIFF image converter within the graphics filters of the affected software, allowing remote attackers to execute arbitrary code through a crafted TIFF image in an Office document.

Recommendations For Microsoft Office XP SP3, update to a version that includes the fix for the TIFF image converter buffer overflow issue. For Microsoft Office Converter Pack, update to a version that includes the fix for the TIFF image converter buffer overflow issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2010-3949

Affected Products

Office Converter Pack

Office Xp Sp3

PT-2010-5186 · Microsoft · Office Converter Pack+1

CVE-2010-3949

Weakness Enumeration

Related Identifiers

Affected Products

References · 5