CERT-In Vulnerability Note CIVN-2006-90
Microsoft Publisher Remote Code Execution Vulnerability
Original Issue Date: September 13, 2006
Severity Rating:
High
Systems Affected
- Microsoft Office 2000 SP3
- Microsoft Office XP SP3
- Microsoft Office 2003 SP1 and SP2
- Office Publisher 2003 Microsoft Windows XP SP1 and SP2
Overview A remote code execution vulnerability has been reported in Microsoft Publisher that could be exploited by an attacker to take complete control of the vulnerable system.
Description
The vulnerability is caused due to insufficient data validation performed by MS Publisher while processing the contents of .pub file.
The attacker could exploit this vulnerability by creating a specially crafted Publisher file using a malformed string. Opening this crafted Publisher file could corrupt the system memory and allow attacker to execute arbitrary code.
An attacker could host a web site containing the specially crafted file and could persuade the user to visit the website typically by getting them click on a link to the website.
It is to be noted that if a user has logged on with administrative privileges then successful exploitation of this vulnerability could allow an attacker to take complete control of the vulnerable system.
Workaround
Do not open or save Publisher files received from un-trusted sources.
Solution
Apply appropriate patches as mentioned in Microsoft Security Bulletin MS06-054 References
Microsoft
http://www.microsoft.com/technet/security/Bulletin/MS06-054.mspx
FrSIRT
http://www.frsirt.com/english/advisories/2006/3565
Secunia
http://secunia.com/advisories/21863
CVE Name
CVE-2006-0001 Disclaimer The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Phone: +91-11-24368572
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
|
