(MS12-029) Vulnerability in Microsoft Word Could Allow Remote Code Execution (2680352)
Schweregrad: : Crítico
Identificador(es) CVE: : CVE-2012-0183
Data do informe: 09 maio 2012
Descrição
A vulnerability exists in the way affected versions of MS Office parse RTF data. An attacker could send a target a specially crafted RTF file to exploit this vulnerability. When exploited successfully, it could allow remote code execution on the affected system.
Note that users with privileges less than that of an administrator are less impacted by the effects of this vulnerability.
Solução
Software infectado e versão:
- Microsoft Office 2003 Service Pack 3 (Microsoft Word 2003 Service Pack 3)
- Microsoft Office 2007 Service Pack 2
- Microsoft Office 2007 Service Pack 3
- Microsoft Office 2008 for Mac
- Microsoft Office for Mac 2011
- Microsoft Office Compatibility Pack Service Pack 2
- Microsoft Office Compatibility Pack Service Pack 3