Content
(MS08-072) Microsoft Word RTF Object Parsing Vulnerability IV (957173)
- Type
- Logic error
- Impact of exploitation
- Remote Code Execution
- User Interaction
- user interaction is needed
- Attack Vector
- Maliciously Crafted File
- Rating
- High
- CVE reference
- CVE-2008-4031,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2000 SP3,
- Word 2002 SP3,
- Word 2003 SP3,
- Word 2007,
- Outlook 2007,
- Word 2007 SP1,
- Word Viewer 2003,
- Word Viewer 2003 SP3,
- Office Compatibility Pack For Word Excel Ppt 2007 ,
- Works 8.5,
- Office for Mac 2004,
- Office 2008 for Mac,
- Open XML File Format Converter for Mac 1.0,
- Summary
- A vulnerability exists in Microsoft Office that could result in remote code execution.
Tab Navigation
Description
Microsoft Windows is an industry standard operating system. The vulnerability in Office is in how the program handles specially crafted RTF files. If a user were to open a specially crafted RTF file in Microsoft Word or read a specially crafted email sent in the RTF format, and attacker could then be allowed to execute remote code on the victim's machine.
McAfee Product Mitigation & Recommendations
Recommendations
Download and install the patch available from Microsoft(957173): http://www.microsoft.com/technet/security/Bulletin/MS08-072.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS08-072) Microsoft Word RTF Object Parsing Vulnerability IV (957173)
- Signature identifier:
- 6275
- Release date:
- 12/9/2008
McAfee Host IPS
- Signature:
- Generic Buffer Overflow Protection
- Signature identifier:
- 428
- Release date:
- 8/25/2008
- First released in:
- 2.0
Additional Resources
(MS08-072) Microsoft Word RTF Object Parsing Vulnerability IV (957173)
http://www.microsoft.com/technet/security/Bulletin/MS08-072.mspx
All Information
Timeline -
12/9/2008
Vendor has provided a patch.
Description -
Microsoft Windows is an industry standard operating system. The vulnerability in Office is in how the program handles specially crafted RTF files. If a user were to open a specially crafted RTF file in Microsoft Word or read a specially crafted email sent in the RTF format, and attacker could then be allowed to execute remote code on the victim's machine.
McAfee Product Mitigation & Recommendations
Recommendations -
Download and install the patch available from Microsoft(957173): http://www.microsoft.com/technet/security/Bulletin/MS08-072.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS08-072) Microsoft Word RTF Object Parsing Vulnerability IV (957173)
- Signature identifier:
- 6275
- Release date:
- 12/9/2008
McAfee Host IPS
- Signature:
- Generic Buffer Overflow Protection
- Signature identifier:
- 428
- Release date:
- 8/25/2008
- First released in:
- 2.0
Additional Resources
Additional Resources -
(MS08-072) Microsoft Word RTF Object Parsing Vulnerability IV (957173)
http://www.microsoft.com/technet/security/Bulletin/MS08-072.mspx
