Lucene search
AnonymousZDI-11-346HistoryDec 13, 2011 - 12:00 a.m.
Microsoft Office 2007 Office Art Shape Record Hierarchy Parsing Remote Code Execution Vulnerability
2011-12-1300:00:00
Anonymous
www.zerodayinitiative.com
12
EPSS
0.934
Percentile
99.1%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office 2007. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application processes a shape record hierarchy. Due to the application not properly checking the types of elements within containers, the application will incorrectly modify a property of the object. This modification can be used to cause memory corruption of the type which can lead to code execution under the context of the application.
Related
cve
cve
CVE-2011-3413
2011-12-14 00:55:01
prion
prion
Memory corruption
2011-12-14 00:55:00
nvd
nvd
CVE-2011-3413
2011-12-14 00:55:01
symantec
symantec
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Microsoft PowerPoint OfficeArtθΏη¨δ»£η ζ§θ‘ζΌζ΄(MS11-094)
2011-12-15 00:00:00
securityvulns
securityvulns
cvelist
cvelist
CVE-2011-3413
2011-12-14 00:00:00
nessus
nessus
openvas
openvas
Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (2639142)
2011-12-14 00:00:00
Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (2639142)
2011-12-14 00:00:00