Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:STC:DL:RTF-LISTID-UAF |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Rich Text Format Parser listid Use-After-Free |
Release Date |
2012/10/08 |
Update Number |
2191 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Microsoft Rich Text Format Parser listid Use-After-Free
This signature detects attempts to exploit a known integer overflow vulnerability in Microsoft RTF parser. A remote attacker can exploit this by enticing a target user to open a RTF document. A successful exploit could result in arbitrary code execution.
Extended Description
Use-after-free vulnerability in Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; Word Automation Services on Microsoft SharePoint Server 2010; and Office Web Apps 2010 SP1 allows remote attackers to execute arbitrary code via a crafted RTF document, aka "RTF File listid Use-After-Free Vulnerability."
Affected Products
- Microsoft office_compatibility_pack *
- Microsoft office_web_apps 2010
- Microsoft word 2003
- Microsoft word 2007
- Microsoft word 2010
- Microsoft word_automation_services -
- Microsoft word_viewer *
References
- CVE: CVE-2012-2528