HTTP: Microsoft Office Word sprmTDiagLine80 Record Parsing Stack Buffer Overflow
This signature detects attempts to exploit a known stack buffer overflow vulnerability in Microsoft Office Word. It is due to a boundary error while parsing a crafted Word document. An attack can exploited this by enticing a user to open a maliciously crafted file. In a successful attack, the injected code runs within the security context of the currently logged in user. In an unsuccessful attack, the vulnerable application can terminate abnormally.
Extended Description
Microsoft Word is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Word file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the application. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
Microsoft word_web_app
Short Name
HTTP:STC:DL:WORD-SPRMTDIAGLINE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2010-3214 Microsoft Office Overflow Parsing Record Stack Word bid:43760 sprmTDiagLine80
Release Date
10/26/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3