Array Indexing Memory Corruption Vulnerability (CVE-2010-3955)
Gravedad: Crítico
Identificadores de CVE : CVE-2010-3955
Fecha recomendada: 21 de julio de 2015
Descripción
pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3 does not properly perform array indexing, which allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Array Indexing Memory Corruption Vulnerability."
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1004545
Trend Micro Deep Security DPI Rule Name: 1004545 - Array Indexing Memory Corruption Vulnerability (CVE-2010-3955)
Software y versión afectados
- Microsoft Publisher 2002