|
Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (915384) Vulnerability Scan
Vulnerability Scan Summary Acertains the version of some MS filters
Detailed Explanation for this Vulnerability Test
Synopsis :
Arbitrary code can be executed on the remote host through the Microsoft
Office filters.
Description :
The remote host is running a version of some Microsoft Office
filters which are subject to various flaws which may allow arbitrary
code to be run.
A possible hacker may use these to execute arbitrary code on this host.
To succeed, the attacker would have to send a rogue file to a user
of the remote computer and have it import it with Microsoft Office.
Solution :
Microsoft has released a set of patches for Office 2000, XP and 2003 :
http://www.microsoft.com/technet/security/bulletin/ms06-039.mspx
Threat Level:
Medium / CVSS Base Score : 5.6
(AV:R/AC:H/Au:NR/C:P/I:P/A:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|