OSVDB ID: 33196

Title: Microsoft Word Unspecified Memory Corruption Arbitrary Code Execution (934232)

Info

Disclosure

Feb 09, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Feb 13, 2007

Description

Classification

Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Disclosure: Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Unknown or Incomplete

References

Security Tracker: 1017653
CVE ID: 2007-0870 (see also: NVD)
Bugtraq ID: 22567
Secunia Advisory ID: 24122
SCIP VulDB ID: 2939
ISS X-Force ID: 32503
CERT VU: 332404
Microsoft Knowledge Base Article: 934232
VUPEN Advisory: ADV-2007-0607
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2007-02/0370.html
Other Advisory URL: http://www.avertlabs.com/research/blog/?p=199
http://www.avertlabs.com/research/blog/?p=206
Vendor Specific Advisory URL: http://www.microsoft.com/technet/security/advisory/933052.mspx
Microsoft Security Bulletin: MS07-024

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/33196