vendor:
Microsoft Office 2003
by:
chujwamwdupe
7.5
CVSS
HIGH
Stack Overflow
121
CWE
Product Name: Microsoft Office 2003
Affected Version From: Microsoft Office 2003
Affected Version To: Microsoft Office 2003
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Microsoft Windows XP Service Pack 2
2008
Microsoft Office 2003 WPS to RTF Convert Filter Stack Overflow
A vulnerability exists in WPS to RTF convert filter that is part of Microsoft Office 2003. It could be exploited by remote attacker to take complete control of an affected system. This issue is due to stack overflow error in function that read secions from WPS file. When we change size of for example TEXT section to number langer than 0x10, stack overflow occurs - very easy to exploit.
Mitigation:
Apply the latest security patches provided by Microsoft.