Gravité: : Critique
  Identifiant(s) CVE: : CVE-2012-0183
  Date du conseil: 09 mai 2012

  Description

A vulnerability exists in the way affected versions of MS Office parse RTF data. An attacker could send a target a specially crafted RTF file to exploit this vulnerability. When exploited successfully, it could allow remote code execution on the affected system.

Note that users with privileges less than that of an administrator are less impacted by the effects of this vulnerability.

  Solutions

  Affected software and version:

  • Microsoft Office 2003 Service Pack 3 (Microsoft Word 2003 Service Pack 3)
  • Microsoft Office 2007 Service Pack 2
  • Microsoft Office 2007 Service Pack 3
  • Microsoft Office 2008 for Mac
  • Microsoft Office for Mac 2011
  • Microsoft Office Compatibility Pack Service Pack 2
  • Microsoft Office Compatibility Pack Service Pack 3