| VID |
26388 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (MS08-072, 957173) for 'Remote Code Execution Vulnerability in Microsoft Word' has not been applied.
The remote host is running a version of Microsoft Word which is subject to a flaw which may allow arbitrary code to be run.
An attacker may use this to execute arbitrary code on this host.
To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it open it. Then a bug in the word record parsing handler would result in code execution.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms08-072.mspx
* Platforms Affected:
Microsoft Office Word 2000 Service Pack 3 in Microsoft Office 2000 Service Pack 3
Microsoft Office Word 2002 Service Pack 3 in Microsoft Office XP Service Pack 3
Microsoft Office Word 2003 Service Pack 3 in Microsoft Office 2003 Service Pack 3
Microsoft Office Word 2007 in 2007 Microsoft Office System
Microsoft Office Outlook 2007 in 2007 Microsoft Office System
Microsoft Office Word 2007 Service Pack 1 in 2007 Microsoft Office System Service Pack 1
Microsoft Office Outlook 2007 Service Pack 1 in 2007 Microsoft Office System Service Pack 1
Microsoft Office Word Viewer 2003 Service Pack 3
Microsoft Office Word Viewer
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 1
Microsoft Works 8*
Microsoft Office for Mac
Microsoft Office 2004 for Mac
Microsoft Office 2008 for Mac
Open XML File Format Converter for Mac |
| Recommendation |
Apply the appropriate patch (957173) for your system, as listed in Microsoft Security Bulletin MS08-072 at http://www.microsoft.com/korea/technet/security/bulletin/ms08-072.mspx |
| Related URL |
CVE-2008-2244 (CVE) |
| Related URL |
30124 (SecurityFocus) |
| Related URL |
43663,44081 (ISS) |
|
