CVE-2011-1982

Name of the Vulnerable Software and Affected Versions Microsoft Office versions 2007 SP2, 2010 Gold, and 2010 SP1

Description A remote code execution issue exists in the way Microsoft Office handles specially crafted Word files. This allows remote attackers to execute arbitrary code via a crafted document. An attacker who successfully exploits this issue could take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office 2007 SP2, consider applying the necessary security updates to resolve the issue. For Microsoft Office 2010 Gold, apply the relevant security patch to fix the vulnerability. For Microsoft Office 2010 SP1, update to a version that includes the security fix for this issue.