|
 |
|
Microsoft RichEdit OLE Dialog Memory Corruption Vulnerability
|
|
|
|
|
Secunia Advisory:
|
SA24152
|
|
|
Release Date:
|
2007-02-13
|
|
Last Update:
|
2007-02-15
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Server
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Storage Server 2003
Microsoft Windows XP Home Edition
Microsoft Windows XP Professional
|
| | Software: | Microsoft Access 2000
Microsoft Access 2002
Microsoft Access 2003
Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Frontpage 2000
Microsoft Frontpage 2002
Microsoft Frontpage 2003
Microsoft InfoPath 2003
Microsoft Office 2000
Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Proofing Tools
Microsoft Office 2004 for Mac
Microsoft OneNote 2003
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Outlook 2003
Microsoft Project 2002
Microsoft Project 2003
Microsoft Publisher 2000
Microsoft Publisher 2002
Microsoft Publisher 2003
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Word 2000
Microsoft Word 2002
Microsoft Word 2003
Microsoft Word Viewer 2003
|
| | CVE reference: | CVE-2006-1311 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
A vulnerability has been reported in Microsoft Windows and Microsoft Office, which can be exploited by malicious people to compromise a users system.
The vulnerability is caused due to an error in RichEdit components handling of OLE objects in RTF (Rich Text Format) files. This can be exploited to cause a memory corruption by e.g. tricking a user into opening a malicious RTF document using a Microsoft Office application and interact with a specially crafted, embedded OLE object.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, using the Network Software Inspector.
Solution:
Apply patches.
Microsoft Windows 2000 Service Pack 4:
http://www.microsoft.com/downloads/de...=0b0b13d3-b2fb-4cf4-8ee1-51871d39eecd
Microsoft Windows XP Service Pack 2:
http://www.microsoft.com/downloads/de...=3159428d-7212-4bf0-9699-3dbae5db6ca1
Microsoft Windows XP Professional x64 Edition:
http://www.microsoft.com/downloads/de...=daf2f7ac-20b4-4ec9-9467-2ddd4fc493d6
Microsoft Windows Server 2003 (with or without SP1):
http://www.microsoft.com/downloads/de...=2e8d2355-d5c5-406d-9322-5fe1b2134d2f
Microsoft Windows Server 2003 for Itanium-based Systems (with or without SP1):
http://www.microsoft.com/downloads/de...=ed6dd20f-4c0b-48f7-a1f9-613265506835
Microsoft Windows Server 2003 x64 Edition:
http://www.microsoft.com/downloads/de...=3b6ee258-b636-455b-8833-74dea6269e24
Microsoft Office 2000 Service Pack 3:
(KB920906)
http://www.microsoft.com/downloads/de...=2FF67E78-2A08-45C9-A7AC-09678D060439
Microsoft Office XP Service Pack 3:
(KB920816)
http://www.microsoft.com/downloads/de...=85C5162C-FC35-40B4-AD04-ADD247950423
Microsoft Office 2003 Service Pack 2:
(KB920813)
http://www.microsoft.com/downloads/de...=6C3BCAB8-0C99-4BE6-8DE7-71D463473A4A
Microsoft Project 2000 Service Release 1:
(KB920906)
http://www.microsoft.com/downloads/de...=019B11FC-00B8-451C-AB3C-772780D4C46A
Microsoft Office 2000 Multilanguage Packs:
(KB920906)
http://www.microsoft.com/downloads/de...=B5A087F8-74D2-4184-9986-23AB3C4EF7F2
Microsoft Project 2002 Service Pack 1:
(KB920816)
http://www.microsoft.com/downloads/de...=D162C366-C5E7-4850-B773-1FE669FAEEAF
Microsoft Visio 2002 Service Pack 2:
(KB920816)
http://www.microsoft.com/downloads/de...=B4D2E182-0997-46BC-94AC-B4B0A523C51C
Microsoft Learning Essentials 1.0, 1.1, and 1.5 for Microsoft Office:
(KB929437)
http://www.microsoft.com/downloads/de...=6215BD5B-1CB3-4FED-B08C-C31A88A75EBD
Microsoft Global Input Method Editor for Office 2000 (Japanese):
(KB920906)
http://www.microsoft.com/downloads/de...=2FF67E78-2A08-45C9-A7AC-09678D060439
Microsoft Office 2004 for Mac:
(KB932185)
http://www.microsoft.com/mac/
Provided and/or discovered by:
The vendor credits:
* Kostya Kortchinsky of Immunity, Inc.
* Fabrice Desclaux of EADS Common Research Center.
Changelog:
2007-02-15: Added link to US-CERT.
Original Advisory:
MS07-013 (KB918118):
http://www.microsoft.com/technet/security/Bulletin/MS07-013.mspx
Other References:
US-CERT VU#368132:
http://www.kb.cert.org/vuls/id/368132
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
348 Related Secunia Security Advisories, displaying 10
|
|
|
1. Microsoft Word Unspecified Code Execution Vulnerability
|
|
2. Microsoft SQL Server and MSDE Multiple Vulnerabilities
|
|
3. Microsoft Windows DNS Spoofing Vulnerabilities
|
|
4. Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
|
|
5. Microsoft Windows Pragmatic General Multicast Denial of Service
|
|
6. Microsoft Windows Active Directory LDAP Request Processing Denial of Service
|
|
7. Microsoft Windows WINS Privilege Escalation Vulnerability
|
|
8. Microsoft DirectX MJPEG/SAMI File Processing Vulnerabilities
|
|
9. Microsoft Windows Speech Recognition Security Issue
|
|
10. Apple Safari on Windows Code Execution Vulnerability
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
