Microsoft Word RTF Remote Code Execution Vulnerability (CVE-2014-1761)
Severity: : Critical
Advisory Date: 21 de июля de 2015
DESCRIPTION
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, 2013 RT and Word Viewer allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005989
Trend Micro Deep Security DPI Rule Name: 1005989 - Identified Malicious C&C Server SSL Certificate
AFFECTED SOFTWARE AND VERSION:
- microsoft office 2011
- microsoft office_compatibility_pack
- microsoft office_web_apps 2010
- microsoft office_web_apps_server 2013
- microsoft sharepoint_server 2010
- microsoft sharepoint_server 2013
- microsoft word 2003
- microsoft word 2007
- microsoft word 2010
- microsoft word 2013
- microsoft word_viewer