HTTP: Microsoft Word Font Parsing Buffer Overflow
This signature detects attempts to exploit a known vulnerability in Microsoft Word. An attacker can create a malicious Web site with Web pages containing dangerous Word files, which if accessed by a victim, allows the attacker gain control of the victim's computer.
Extended Description
Microsoft Word is affected by a remote buffer overflow vulnerability. This vulnerability presents itself when a .doc file contains specific malformed input. Upon attempting to read the malformed .doc file, the affected application fails to properly validate data within the file. This may result in the attacker being able to control the flow of program execution. Attackers may exploit this vulnerability to execute arbitrary code in the context of the victim user attempting to access the malformed Word file.
Affected Products
Microsoft office_xp
Short Name
HTTP:STC:DL:WORD-FONT
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Buffer CVE-2005-0564 CVE-2005-1191 Font Microsoft Overflow Parsing Word bid:14216
Release Date
10/04/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3576
False Positive
Rarely
Vendors
Microsoft
CVSS Score
7.5
5.0