Microsoft Internet Explorer Works WkImgSrv.dll ActiveX Denial Of Sevice
Gravité: : Critique
Identifiant(s) CVE: : CVE-2008-1898
Date du conseil: 21 juillet 2015
Description
A certain ActiveX control in WkImgSrv.dll 7.03.0616.0, as distributed in Microsoft Works 7 and Microsoft Office 2003 and 2007, allows remote attackers to execute arbitrary code or cause a denial of service (browser crash) via an invalid WksPictureInterface property value, which triggers an improper function call.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1002463
Trend Micro Deep Security DPI Rule Name: 1002463 - Microsoft Internet Explorer Works WkImgSrv.dll ActiveX Denial Of Service
Affected software and version:
- Microsoft Works 7.0
- Microsoft Office 2007
- Microsoft Office 2003