Content
(MS09-010) Microsoft WordPad Word 97 Text Converter Stack Overflow Vulnerability II (960477)
- Type
- Buffer Overflow
- Impact of exploitation
- Remote Code Execution
- User Interaction
- user interaction is needed
- Attack Vector
- Maliciously Crafted File
- Rating
- Low
- CVE reference
- CVE-2009-0235,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2000 SP4,
- Windows XP SP3,
- Windows XP X64 SP2,
- Windows 2003 SP2,
- Windows 2003 x64 SP2,
- Windows 2003 Itanium SP2,
- Windows Vista SP1,
- Summary
- A vulnerability in Microsoft Word may allow for remote code execution.
Tab Navigation
Description
A vulnerability in Microsoft Word may allow for remote code execution. The flaw is specific to a memory corruption error when processing specially-crafted Word documents via the Word 97 Text Converter.
McAfee Product Mitigation & Recommendations
Recommendations
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-010.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-010) Microsoft WordPad Word 97 Text Converter Stack Overflow Vulnerability II (960477)
- Signature identifier:
- 6598
- Release date:
- 4/14/2009
McAfee Intrushield
- Signature:
- HTTP: Microsoft WordPad Word 97 Text Converter Stack Overflow Vulnerability II
- Signature identifier:
- 0x4025D500
- Release date:
- 4/14/2009
- First released in:
- 5.1.17, 4.1.47
The Remedy V-Flash of 4/14/2009 will contain remedies for Windows and Office XP. Office 2000 requires manual interaction.
Additional Resources
Vulnerabilities in WordPad and Office Text Converters could allow Remote Code Execution (960477)
http://www.microsoft.com/technet/security/bulletin/ms09-010.mspx
All Information
Timeline -
4/14/2009
Vendor has provided a patch.
Description -
A vulnerability in Microsoft Word may allow for remote code execution. The flaw is specific to a memory corruption error when processing specially-crafted Word documents via the Word 97 Text Converter.
McAfee Product Mitigation & Recommendations
Recommendations -
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-010.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-010) Microsoft WordPad Word 97 Text Converter Stack Overflow Vulnerability II (960477)
- Signature identifier:
- 6598
- Release date:
- 4/14/2009
McAfee Intrushield
- Signature:
- HTTP: Microsoft WordPad Word 97 Text Converter Stack Overflow Vulnerability II
- Signature identifier:
- 0x4025D500
- Release date:
- 4/14/2009
- First released in:
- 5.1.17, 4.1.47
The Remedy V-Flash of 4/14/2009 will contain remedies for Windows and Office XP. Office 2000 requires manual interaction.
Additional Resources
Additional Resources -
Vulnerabilities in WordPad and Office Text Converters could allow Remote Code Execution (960477)
http://www.microsoft.com/technet/security/bulletin/ms09-010.mspx