|
|
|||
| Rule General Information |
|---|
| Release Date: | 2013-03-06 | |
| Rule Name: | Microsoft Office Word RTF Parsing Engine Memory Corruption Vulnerability-2 (CVE-2010-1901) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | A memory corruption vulnerability exists in Microsoft Office Word. The vulnerability is due to insufficient validation of user supplied rich text data within Microsoft Office documents. This vulnerability may be exploited by remote attackers to execute arbitrary code on the target system by enticing a user to open a maliciously crafted file. | |
| Impact: | Remote code execution | |
| Affected OS: | Windows, Others | |
| Reference: | CVE-2010-1901 MicrosoftSecurityBulletin:MS10-056 SecurityAdvisory:SA40937 SecurityFocusBID:42132 |
|
| Solutions |
|---|
| Update vendor's patch. |