(MS12-064) Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2742319)
Gravité: : Critique
Identifiant(s) CVE: : CVE-2012-0182,CVE-2012-2528
Date du conseil: 24 octobre 2012
Description
This security update addresses vulnerabilities affecting Microsoft Office. When successfully exploited, it could allow remote code execution via a specially crafted .RTF file. Remote attackers can also get the same user rights as the current user.
Solutions
Affected software and version:
- Microsoft Office 2003 Service Pack 3
- Microsoft Office 2007 Service Pack 2
- Microsoft Office 2007 Service Pack 3
- Microsoft Office 2010 Service Pack 1 (32-bit editions)
- Microsoft Office 2010 Service Pack 1 (64-bit editions)
- Microsoft Word Viewer
- Microsoft Office Compatibility Pack Service Pack 2
- Microsoft Office Compatibility Pack Service Pack 3
- Microsoft SharePoint Server 2010 Service Pack 1
- Microsoft Office Web Apps 2010 Service Pack 1