For more information about the vulnerability, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability entry later in this bulletin. The security update addresses the vulnerability by correcting the way that Microsoft Office parses specially crafted files. For more information, see the Affected and Non-Affected Software section. This security update is rated Important for supported editions of Microsoft Word 2007 and Microsoft Office Compatibility Pack. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. The vulnerability could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Word. This security update resolves one privately reported vulnerability in Microsoft Office. Version: 1.0 General Information Executive Summary In this article Vulnerability in Microsoft Word Could Allow Remote Code Execution (2969261)
0 Comments
Leave a Reply. |