1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Microsoft Word FIB BO

HTTP Microsoft Word FIB BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects a remote stack-buffer overflow vulnerability in the Microsoft Word.

Additional Information

Microsoft Word is a word processor available for multiple platforms.

Word is prone to a remote stack-buffer overflow vulnerability when opening a specially crafted Word ('.doc') file. The problem occurs when parsing the File Information Block (FIB) structure in a Word document.

Attackers can exploit this issue by enticing victims into opening a malicious Word file.

Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the application.

Response

The vendor has released updates and an advisory. Please see the references for details.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube