(MS12-029) Vulnerability in Microsoft Word Could Allow Remote Code Execution (2680352)
Gravedad: Crítico
Identificadores de CVE : CVE-2012-0183
Fecha recomendada: 09 de mayo de 2012
Descripción
A vulnerability exists in the way affected versions of MS Office parse RTF data. An attacker could send a target a specially crafted RTF file to exploit this vulnerability. When exploited successfully, it could allow remote code execution on the affected system.
Note that users with privileges less than that of an administrator are less impacted by the effects of this vulnerability.
Soluciones
Software y versión afectados
- Microsoft Office 2003 Service Pack 3 (Microsoft Word 2003 Service Pack 3)
- Microsoft Office 2007 Service Pack 2
- Microsoft Office 2007 Service Pack 3
- Microsoft Office 2008 for Mac
- Microsoft Office for Mac 2011
- Microsoft Office Compatibility Pack Service Pack 2
- Microsoft Office Compatibility Pack Service Pack 3