Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerability in Microsoft Office XP could allow Remote Code Execution (873352) Vulnerability Scan
Vulnerability Scan Summary
Acertains the version of MSO.dll
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through the Office client.
The remote host is running a version of Microsoft Office which contains
a security flaw which may allow a possible hacker to execute arbitrary
code on the remote host.
To exploit this flaw, a possible hacker would need to send a specially crafted file
to a user on the remote host and wait for him to open it using Microsoft Office.
When opening the malformed file, Microsoft Office will encounter a buffer
overflow which may be exploited to execute arbitrary code.
Microsoft has released a patch for Office XP :
High / CVSS Base Score : 7
Click HERE for more information and discussions on this network vulnerability scan.