Name:
MS.Publisher.Contents.Index.Memory.Corruption
Released Date:
Feb 19 2008
Severity:
critical
CVE:
2008-0104
MS Bulletin:
ms08-012
Bugtraq:
27740

FortiGuard Center > Vulnerability Encyclopedia


In-Depth Analysis

Description
This indicates a possible attempt to exploit a memory corruption vulnerability in Microsoft Office Publisher.

The vulnerability is caused by an error that occurs when the software handles a malformed .PUB file. It allows a remote attacker to execute arbitrary code via a crafted .PUB file.
 
Impact
System compromise: remote code execution.
 
Affected Products
Microsoft Office 2000 Service Pack 3
Microsoft Office XP Service Pack 3
Microsoft Office 2003 Service Pack 2
Microsoft Office Publisher 2000
Microsoft Office Publisher 2002
Microsoft Office Publisher 2003 Service Pack 2
Aliases
MS.Publisher.Contents.Index.Memory.Corruption
MS.Publisher.Contens.Index.Memory.Corruption
References
http://www.microsoft.com/technet/security/Bulletin/ms08-012.mspx
http://www.securityfocus.com/bid/27740
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-0104
Recommended Actions
Apply the patch available from the web site:
http://www.microsoft.com/technet/security/bulletin/ms08-012.mspx

 
 
SITE MAP  |  LEGAL NOTICES

      © 2003 FORTINET INC. ALL RIGHTS RESERVED