Office Uninitialized Object Pointer Vulnerability (CVE-2011-1982)
Severity: CRITICAL
CVE Identifier: CVE-2011-1982,MS11-073
Advisory Date: JUL 21, 2015
DESCRIPTION
Microsoft Office 2007 SP2, and 2010 Gold and SP1, does not initialize an unspecified object pointer during the opening of Word documents, which allows remote attackers to execute arbitrary code via a crafted document, aka "Office Uninitialized Object Pointer Vulnerability."
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004920
Trend Micro Deep Security DPI Rule Name: 1004920 - Office Uninitialized Object Pointer Vulnerability (CVE-2011-1982)
AFFECTED SOFTWARE AND VERSION
- microsoft office 2007
- microsoft office 2010