Microsoft Publisher Font Parsing Buffer Overflow
Publish Date: 14 juin 2016
Gravité: : Medium
Identifiant(s) CVE: : CVE-2006-0001,MS06-054
Date du conseil: 14 juin 2016
Description
Stack-based buffer overflow in Microsoft Publisher 2000 through 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted PUB file, which causes an overflow when parsing fonts.
Information Exposure Rating:
- 1001232 - Microsoft Publisher Font Parsing Buffer Overflow.
- 1001232 - Microsoft Publisher Font Parsing Buffer Overflow.
Solutions
Trend Micro Deep Security DPI Rule Number: 1000764
Trend Micro Deep Security DPI Rule Name: 1000764 - Microsoft Publisher Font Parsing Buffer Overflow
Affected software and version:
- Microsoft Office 2000 SP3
- Microsoft Office 2003 SP1
- Microsoft Office 2003 SP2
- Microsoft Office XP SP3
- Microsoft Publisher 2000
- Microsoft Publisher 2002
- Microsoft Publisher 2003