Vulnerability

(MS12-064) Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2742319)

Publish date: October 24, 2012

CVE-2012-0182,CVE-2012-2528

SEVERITY

CRITICAL

//  ADVISORY DATE

24 OCT 2012


DESCRIPTION

This security update addresses vulnerabilities affecting Microsoft Office. When successfully exploited, it could allow remote code execution via a specially crafted .RTF file. Remote attackers can also get the same user rights as the current user.

SOLUTION

AFFECTED SOFTWARE AND VERSION

  • Microsoft Office 2003 Service Pack 3
  • Microsoft Office 2007 Service Pack 2
  • Microsoft Office 2007 Service Pack 3
  • Microsoft Office 2010 Service Pack 1 (32-bit editions)
  • Microsoft Office 2010 Service Pack 1 (64-bit editions)
  • Microsoft Word Viewer
  • Microsoft Office Compatibility Pack Service Pack 2
  • Microsoft Office Compatibility Pack Service Pack 3
  • Microsoft SharePoint Server 2010 Service Pack 1
  • Microsoft Office Web Apps 2010 Service Pack 1

Featured Stories

Connect with us on