| VID |
28055 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The Hotifx(827103) for 'Buffer Overflow Vulnerability in WordPerfect Converter' has not been applied.
The Microsoft Office WordPerfect converter helps users convert documents from Corel WordPerfect file formats to Microsoft Word file formats. The WordPerfect converter is included in all versions of Office and is also available separately in the Microsoft Office Converter Pack. Microsoft WordPerfect Converter has a Buffer overflow, caused by improperly checking validation of parameters that are passed to it when a WordPerfect document is opened. To exploit this vulnerability, an attacker can send a malicious file to the user and persuade the user to open the file. If the user opened the file, the application that used the WordPerfect converter could fail and could allow the attacker to execute code of their choice in the security context of the user such as adding, changing, or deleting any data or configuration information.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/MS03-036.asp
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0092.html
* Platforms Affected:
Microsoft Office 97, 2000, XP
Microsoft Word 98 (Japanese)
Microsoft FrontPage 2000, 2002
Microsoft Publisher 2000, 2002
Microsoft Works Suite 2001, 2002, 2003 |
| Recommendation |
Apply the appropriate patch as listed in Microsoft's security bulletin MS03-036 at
http://www.microsoft.com/technet/security/bulletin/MS03-036 .asp
1. Open the following page :
for Office XP, FrontPage 2002, Publisher 2002 and Works 2002/2003,
http://microsoft.com/downloads/details.aspx?FamilyId=EC563DEE-6BFB-431D-B39E-2D672C0C223F&displaylang=en
http://www.microsoft.com/office/ork/xp/journ/wpft1001a.htm (Administrative update only)
for Office 2000, FrontPage 2000, Publisher 2000, and Works 2001,
http://microsoft.com/downloads/details.aspx?FamilyId=D3ED4189-315A-411A-A739-F7181310FBA7&displaylang=en
2. Select a different language from the drop-down list and click <Go> button.
3. Click <Download> button to download this patch file.
4. Run this file to install the patch.
For Office 97 and Word 98(J): For information about how to receive support for Word 97 and for Word 98(J) see the following Microsoft Knowledge Base article: 827656
-- OR --
You can install this security patch from Office Update at http://www.office.microsoft.com/ProductUpdates/default.aspx |
| Related URL |
CVE-2003-0666 (CVE) |
| Related URL |
8538 (SecurityFocus) |
| Related URL |
13091 (ISS) |
|
