RULE(RULE ID:710925)

Rule General Information
Release Date: 2012-06-06
Rule Name: Microsoft Office Word File Processing buffer overflow Vulnerability (CVE-2009-0563)
Severity:
CVE ID:
Rule Protection Details
Description: Stack-based buffer overflow in Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open XML File Format Converter for Mac; Microsoft Office Word Viewer 2003 SP3; Microsoft Office Word Viewer; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a Word document with a crafted tag containing an invalid length field, aka "Word Buffer Overflow Vulnerability."
Impact: Remote code execution
Affected OS: Windows
Reference: SecurityFocusBID:35188
CVE-2009-0563
Solutions
Update vendor's patch.