Info

Disclosure

Jul 11, 2006

Discovery

Unknown

Dates

Exploit

Feb 12, 2006

Solution

Jul 11, 2006

Description

A local overflow exists in Office, Project, Visio and Office for Mac. MSO.DLL fails to validate Office documents resulting in a buffer overflow. With a specially crafted file containing a malformed string, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Office	2003 SP1
		2003 SP2
		XP SP3
		2000 SP3
		2004 for Mac
		v. X for Mac
	Project	2002 SP1
	Project	2000 Service Release 1
	Visio	2002 SP2

References

Milw0rm: 1615
Exploit Database: 1615
Bugtraq ID: 17252 18889
CVE ID: 2006-1540 (see also: NVD)
Secunia Advisory ID: 21012
SCIP VulDB ID: 2367
Related OSVDB ID: 27148 27149
ISS X-Force ID: 27607 27609
CERT VU: 609868
Microsoft Knowledge Base Article: 917284
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0120.html
http://archives.neohapsis.com/archives/bugtraq/2006-07/0141.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0135.html
Microsoft Security Bulletin: MS06-038
Keyword: SYMSA-2006-007

Credit

Elia Florio - elia_floriosymantec.com - Symantec Corp.

Direct URL: http://osvdb.org/27150

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Office

Project

Visio

References

Credit