RULE(RULE ID:315429)

Rule General Information
Release Date: 2018-10-15
Rule Name: FILE-OFFICE Microsoft Office WordPerfect File Processing Stack Buffer Overflow Vulnerability (CVE-2013-1324)
Severity:
CVE ID:
Rule Protection Details
Description: Stack-based buffer overflow in Microsoft Office 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) file, aka "Word Stack Buffer Overwrite Vulnerability."
Impact: A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks includes arbitrary code execution and denial of service.
Affected OS: Windows
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1324
MicrosoftSecurityBulletin:MS13-091
Solutions
Applying the patch MS13-091 is able to eliminate this problem. The bugfix is ready for download at https://docs.microsoft.com/zh-cn/security-updates/Securitybulletins/2013/ms13-091