Microsoft Word RTF Remote Code Execution Vulnerability (CVE-2014-1761)
Gravité: : Critique
Date du conseil: 21 juillet 2015
Description
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, 2013 RT and Word Viewer allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1005989
Trend Micro Deep Security DPI Rule Name: 1005989 - Identified Malicious C&C Server SSL Certificate
Affected software and version:
- microsoft office 2011
- microsoft office_compatibility_pack
- microsoft office_web_apps 2010
- microsoft office_web_apps_server 2013
- microsoft sharepoint_server 2010
- microsoft sharepoint_server 2013
- microsoft word 2003
- microsoft word 2007
- microsoft word 2010
- microsoft word 2013
- microsoft word_viewer