危険度: 緊急
  CVE識別番号: CVE-2010-3955
  情報公開日: 7 21, 2015

  概要

pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3 does not properly perform array indexing, which allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Array Indexing Memory Corruption Vulnerability."

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1004545
  Trend Micro Deep Security DPI Rule Name: 1004545 - Array Indexing Memory Corruption Vulnerability (CVE-2010-3955)

  影響を受けるソフトウェア

  • Microsoft Publisher 2002