1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Microsoft RTF CVE-2014-1761 2

Attack: Microsoft RTF CVE-2014-1761 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempt to exploit a remote code execution vulnerability in Microsoft Word.

Additional Information

Microsoft Word is a word processor available for multiple platforms.

Microsoft Word is prone to a remote memory-corruption vulnerability. Specifically, this issue occurs when parsing specially crafted RTF file. An attacker can exploit this issue by enticing an unsuspecting user to view a specially crafted RTF file.

Successful exploits will allow attackers to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.

Affected

  • Microsoft Word

Response

Updates are available. Please see the references or vendor advisory for more information.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube