Microsoft Publisher Font Parsing Buffer Overflow
Severity: : Medium
CVE Kennungen: : CVE-2006-0001,MS06-054
Advisory Date: 14 de czerwca de 2016
DESCRIPTION
Stack-based buffer overflow in Microsoft Publisher 2000 through 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted PUB file, which causes an overflow when parsing fonts.
INFORMATION EXPOSURE
- 1001232 - Microsoft Publisher Font Parsing Buffer Overflow.
- 1001232 - Microsoft Publisher Font Parsing Buffer Overflow.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000764
Trend Micro Deep Security DPI Rule Name: 1000764 - Microsoft Publisher Font Parsing Buffer Overflow
AFFECTED SOFTWARE AND VERSION:
- Microsoft Office 2000 SP3
- Microsoft Office 2003 SP1
- Microsoft Office 2003 SP2
- Microsoft Office XP SP3
- Microsoft Publisher 2000
- Microsoft Publisher 2002
- Microsoft Publisher 2003