Microsoft Publisher Font Parsing Buffer Overflow
Severity: MEDIUM
CVE Identifier: CVE-2006-0001,MS06-054
Advisory Date: JUN 14, 2016
DESCRIPTION
Stack-based buffer overflow in Microsoft Publisher 2000 through 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted PUB file, which causes an overflow when parsing fonts.
TREND MICRO PROTECTION INFORMATION
- 1001232 - Microsoft Publisher Font Parsing Buffer Overflow.
- 1001232 - Microsoft Publisher Font Parsing Buffer Overflow.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000764
Trend Micro Deep Security DPI Rule Name: 1000764 - Microsoft Publisher Font Parsing Buffer Overflow
AFFECTED SOFTWARE AND VERSION
- Microsoft Office 2000 SP3
- Microsoft Office 2003 SP1
- Microsoft Office 2003 SP2
- Microsoft Office XP SP3
- Microsoft Publisher 2000
- Microsoft Publisher 2002
- Microsoft Publisher 2003