1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Microsoft OleAut32 RCE CVE-2014-6332

Web Attack: Microsoft OleAut32 RCE CVE-2014-6332

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a vulnerability in Microsoft Object Linking and Embedding (OLE) which may result in remote code execution.

Additional Information

Microsoft Object Linking and Embedding (OLE) is a Windows protocol that allows applications to share data or to control other applications.

Microsoft Windows Object Linking and Embedding (OLE) is prone to a remote code-execution vulnerability because Internet Explorer fails to properly handle the OLE objects in memory. Specifically, the issue affects the OLE Automation Array. An attacker can exploit this issue by enticing an unsuspecting user to open a Microsoft Office file that contains a specially crafted OLE object.

An attacker can leverage this issue to execute arbitrary code and gain elevated privileges in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.

Affected

  • windows
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube