HTTP: Microsoft Office Bad Index Memory Corruption
This signature detects attempts to exploit a known vulnerability against Microsoft Word. A successful attack can lead to memory corruption or arbitrary code execution.
Extended Description
Microsoft Word 2007 SP3, Word Viewer, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Bad Index Remote Code Execution Vulnerability."
Affected Products
Microsoft office_word_viewer
Short Name
HTTP:STC:MS-WORD-INDEX-MC
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Bad CVE-2014-6334 Corruption Index Memory Microsoft Office bid:70962
Release Date
12/08/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3