Signature Detail
Short Name |
HTTP:STC:DL:WORD-DOC-BOF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Word Document Parsing Buffer Overflow |
Release Date |
2012/12/18 |
Update Number |
2213 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Microsoft Word Document Parsing Buffer Overflow
This signature detects attempts to exploit a known vulnerability in Microsoft Word Document. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
Buffer overflow in Microsoft Word 2002 (10.6612.6714) SP3, and possibly other versions, allows remote attackers to cause a denial of service (application exception) and possibly execute arbitrary code in winword.exe via certain unexpected values in a .doc file, including (1) an offset that triggers an out-of-bounds memory access, (2) a certain value that causes a large memory copy as triggered by an integer conversion error, and other values.
Affected Products
- microsoft word 2002 (sp3)
References
- CVE: CVE-2004-0963