English

Calendar Discussions Polls

RSS feeds Subscriptions Contacts

The Internet threat alert status is currently normal. At present, no major epidemics or other serious incidents have been recorded by Kaspersky Lab’s monitoring service.

Internet threat level: 1

Read us on

Home→Descriptions→SA20153

Microsoft Word Malformed Object Pointer Vulnerability

Secunia ID	SA20153
CVE-ID	CVE-2006-2492
Release Date	19 May 2006
Last Change	13 Jun 2006
Criticality	Extremely Critical
Solution Status	Vendor Patch
Software	Microsoft Office 2000 Microsoft Office 2003 Professional Edition Microsoft Office 2003 Small Business Edition Microsoft Office 2003 Standard Edition Microsoft Office 2003 Student and Teacher Edition Microsoft Office Word Viewer 2003 Microsoft Office XP Microsoft Word 2000 Microsoft Word 2002 Microsoft Word 2003 Microsoft Works Suite 2001 Microsoft Works Suite 2002 Microsoft Works Suite 2003 Microsoft Works Suite 2004 Microsoft Works Suite 2005 Microsoft Works Suite 2006
Where	From remote
Impact	System access This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.
Description	A vulnerability has been reported in Microsoft Word, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a memory corruption error when handling Word documents using a malformed object pointer. Successful exploitation allows execution of arbitrary code. NOTE: This vulnerability is being actively exploited.
Solution	Apply patches. Microsoft Word 2000: http://www.microsoft.com/downloads/details.aspx?FamilyId=507D97B5-8B20-41B2-AE8B-27F2BF5198CD Microsoft Word 2002: http://www.microsoft.com/downloads/details.aspx?FamilyId=4CDE644B-BE05-4680-B0EF-DF563095563C Microsoft Word 2003: http://www.microsoft.com/downloads/details.aspx?FamilyId=ADEA09B4-481A-4908-8B77-0630AC679CAC Microsoft Word Viewer 2003: http://www.microsoft.com/downloads/details.aspx?FamilyId=6089B843-61FF-469F-A38B-BD4FFEFF0552 Microsoft Works Suite 2000: http://www.microsoft.com/downloads/details.aspx?FamilyId=507D97B5-8B20-41B2-AE8B-27F2BF5198CD Microsoft Works Suite 2001: http://www.microsoft.com/downloads/details.aspx?FamilyId=507D97B5-8B20-41B2-AE8B-27F2BF5198CD Microsoft Works Suite 2002: http://www.microsoft.com/downloads/details.aspx?FamilyId=4CDE644B-BE05-4680-B0EF-DF563095563C Microsoft Works Suite 2003: http://www.microsoft.com/downloads/details.aspx?FamilyId=4CDE644B-BE05-4680-B0EF-DF563095563C Microsoft Works Suite 2004: http://www.microsoft.com/downloads/details.aspx?FamilyId=4CDE644B-BE05-4680-B0EF-DF563095563C Microsoft Works Suite 2005: http://www.microsoft.com/downloads/details.aspx?FamilyId=4CDE644B-BE05-4680-B0EF-DF563095563C Microsoft Works Suite 2006: http://www.microsoft.com/downloads/details.aspx?FamilyId=4CDE644B-BE05-4680-B0EF-DF563095563C
Reported by	This vulnerability has been discovered in the wild as a "Zero-day" while investigating a system compromise. The vendor also credits Shih-hao Weng.
Original Advisory	MS06-027 (KB917336): http://www.microsoft.com/technet/security/Bulletin/MS06-027.mspx Microsoft (KB919637): http://www.microsoft.com/technet/security/advisory/919637.mspx