|
|
|||
| Rule General Information |
|---|
| Release Date: | 2018-10-15 | |
| Rule Name: | FILE-OFFICE Microsoft Office WordPerfect File Processing Stack Buffer Overflow Vulnerability (CVE-2013-1324) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Stack-based buffer overflow in Microsoft Office 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) file, aka "Word Stack Buffer Overwrite Vulnerability." | |
| Impact: | A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks includes arbitrary code execution and denial of service. | |
| Affected OS: | Windows | |
| Reference: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1324 MicrosoftSecurityBulletin:MS13-091 |
|
| Solutions |
|---|
| Applying the patch MS13-091 is able to eliminate this problem. The bugfix is ready for download at https://docs.microsoft.com/zh-cn/security-updates/Securitybulletins/2013/ms13-091 |