Intrusion Prevention

MS.Reader.LIT.File.Processing.Buffer.Overflow

Description

This indicates a possible attack against a buffer overflow vulnerability in Microsoft Reader.
This is caused by the vulnerable application's failure to adequately sanitize user supplied input. An attacker may exploit this vulnerability by sending a specially crafted .lit or .aa file. A successful exploit may allow the attacker to execute arbitrary code on a vulnerable system.

Affected Products

Microsoft Reader PC version 2.1.1.3143 and prior.

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade the latest version, available from the website:
http://www.microsoft.com/READER/