Content
(MS09-027) Microsoft Office Word Buffer Overflow Vulnerability II (969514)
- Type
- Buffer Overflow
- Impact of exploitation
- Remote Code Execution
- User Interaction
- user interaction is needed
- Attack Vector
- Maliciously Crafted File
- Rating
- Medium
- CVE reference
- CVE-2009-0565,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Word 2002 SP3,
- Word 2003 SP3,
- Word 2007 SP1,
- Word 2007 SP2,
- Office 2004 Mac,
- Office 2008 for Mac,
- Open XML File Format Converter for Mac 1.0,
- Word Viewer 2003 SP3,
- Office Compatibility Pack Word,Excel,Powerpoint 2007 SP2,
- Summary
- A buffer overflow vulnerability in Microsoft Office Word may allow for remote code execution attacks.
Tab Navigation
Description
A buffer overflow vulnerability in Microsoft Office Word may allow for remote code execution attacks. The flaw is specific to the improper handling of Microsoft Word files which contain malformed record data. Upon exploitation, an attacker will gain the ability to take complete control of the compromised system.
McAfee Product Mitigation & Recommendations
Recommendations
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-027.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-027) Microsoft Office Word Buffer Overflow Vulnerability II (969514)
- Signature identifier:
- 6772
- Release date:
- 6/9/2009
McAfee Intrushield
- Signature:
- HTTP: Microsoft Office Word Buffer Overflow Vulnerability II
- Signature identifier:
- 0x40261800
- Release date:
- 6/9/2009
- First released in:
- 4.1.51, 5.1.21
The Remedy V-Flash of June 10 contains remedies.
- Release date:
- 6/10/2009
Additional Resources
Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (969514)
http://www.microsoft.com/technet/security/bulletin/ms09-027.mspx
All Information
Timeline -
6/9/2009
Vendor has provided a patch.
Description -
A buffer overflow vulnerability in Microsoft Office Word may allow for remote code execution attacks. The flaw is specific to the improper handling of Microsoft Word files which contain malformed record data. Upon exploitation, an attacker will gain the ability to take complete control of the compromised system.
McAfee Product Mitigation & Recommendations
Recommendations -
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-027.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-027) Microsoft Office Word Buffer Overflow Vulnerability II (969514)
- Signature identifier:
- 6772
- Release date:
- 6/9/2009
McAfee Intrushield
- Signature:
- HTTP: Microsoft Office Word Buffer Overflow Vulnerability II
- Signature identifier:
- 0x40261800
- Release date:
- 6/9/2009
- First released in:
- 4.1.51, 5.1.21
The Remedy V-Flash of June 10 contains remedies.
- Release date:
- 6/10/2009
Additional Resources
Additional Resources -
Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (969514)
http://www.microsoft.com/technet/security/bulletin/ms09-027.mspx
