Name:
MS.Publisher.OH.otyEscherTable.Memory.Corruption
Released Date:
May 14 2008
Severity:
critical
CVE:
2008-0119
MS Bulletin:
ms08-027
Bugtraq:
29158

FortiGuard Center > Vulnerability Encyclopedia


In-Depth Analysis

Description
This indicates an attempt to exploit a memory corruption vulnerability in Microsoft Publisher.

The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious Publisher file. It allows a remote attacker to execute arbitrary code via a crafted Publisher file.
 
Impact
System compromise: remote code execution.
 
Affected Products
Microsoft Office 2000 Service Pack 3
Microsoft Office XP Service Pack 3
Microsoft Office 2003 Service Pack 2
Microsoft Office 2003 Service Pack 3
2007 Microsoft Office System
2007 Microsoft Office System Service Pack 1
Aliases
References
http://www.microsoft.com/technet/security/Bulletin/ms08-027.mspx
http://www.securityfocus.com/bid/29158
http://www.frsirt.com/english/advisories/2008/1505
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-0119
Recommended Actions
Apply the patch available from the following web site:
http://www.microsoft.com/technet/security/bulletin/ms08-027.mspx

 
 
SITE MAP  |  LEGAL NOTICES

      © 2003 FORTINET INC. ALL RIGHTS RESERVED