Microsoft Word RTF 'listoverridecount' Remote Code Execution Vulnerability (CVE-2012-2539)
Publish Date: 21 de июля de 2015
Severity: : Critical
CVE Kennungen: : CVE-2012-2539,MS12-079
Advisory Date: 21 de июля de 2015
DESCRIPTION
Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; and Office Web Apps 2010 SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data, aka "Word RTF 'listoverridecount' Remote Code Execution Vulnerability."
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005271
Trend Micro Deep Security DPI Rule Name: 1005271 - Microsoft Word RTF 'listoverridecount' Remote Code Execution Vulnerability (CVE-2012-2539)
AFFECTED SOFTWARE AND VERSION:
- microsoft office_compatibility_pack
- microsoft office_web_apps 2010
- microsoft office_word_viewer
- microsoft word 2003
- microsoft word 2007
- microsoft word 2010
- Microsoft Word