Severity: : Critical
  CVE Kennungen: : CVE-2011-1982,MS11-073
  Advisory Date: 21 lipca 2015

  DESCRIPTION

Microsoft Office 2007 SP2, and 2010 Gold and SP1, does not initialize an unspecified object pointer during the opening of Word documents, which allows remote attackers to execute arbitrary code via a crafted document, aka "Office Uninitialized Object Pointer Vulnerability."

  INFORMATION EXPOSURE

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1004920
  Trend Micro Deep Security DPI Rule Name: 1004920 - Office Uninitialized Object Pointer Vulnerability (CVE-2011-1982)

  AFFECTED SOFTWARE AND VERSION:

  • microsoft office 2007
  • microsoft office 2010