Microsoft Word Code Execution Vulnerability
BID:21589
Info
Microsoft Word Code Execution Vulnerability
| Bugtraq ID: | 21589 |
| Class: | Unknown |
| CVE: |
CVE-2006-6561 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 14 2006 12:00AM |
| Updated: | Nov 01 2007 05:06PM |
| Credit: | This issue was reported by Disco Jonny. |
| Vulnerable: |
Microsoft Works Suite 2006 0 Microsoft Works Suite 2005 0 Microsoft Works Suite 2004 Microsoft Word X for Mac Microsoft Word Viewer 2003 0 Microsoft Word 2004 for Mac 0 Microsoft Word 2003 Microsoft Word 2002 SP3 Microsoft Word 2002 SP2 Microsoft Word 2002 SP1 Microsoft Word 2002 Microsoft Word 2000 Korean Version Microsoft Word 2000 Japanese Version Microsoft Word 2000 Chinese Version Microsoft Word 2000 SR1a Microsoft Word 2000 SR1 Microsoft Word 2000 SP3 Microsoft Word 2000 SP2 Microsoft Word 2000 Microsoft Office XP Developer Edition Microsoft Office XP SP3 Microsoft Office XP SP2 Microsoft Office XP SP1 Microsoft Office XP Microsoft Office Word 2003 Viewer 0 Microsoft Office 2004 for Mac 0 Microsoft Office 2003 SP3 Microsoft Office 2003 SP2 Microsoft Office 2003 SP1 Microsoft Office 2003 0 Microsoft Office 2002 0 Microsoft Office 2000 Korean Version Microsoft Office 2000 Japanese Version Microsoft Office 2000 Chinese Version Microsoft Office 2000 SP3 Microsoft Office 2000 SP1 Microsoft Office 2000 Microsoft Internet Explorer for Unix SP2 |
| Not Vulnerable: |
Microsoft Word 2007 0 Microsoft Office 2007 0 |
Discussion
Microsoft Word Code Execution Vulnerability
Microsoft Word is prone to a remote code-execution vulnerability.
An attacker could exploit this issue by enticing a victim to open a malicious Word file. If the attack is successful, the attacker may be able to execute arbitrary code in the context of the currently logged-in user.
Note that this issue is distinct from issues described in BID 21451 (Microsoft Word Malformed String Arbitrary Remote Code Execution Vulnerability) and BID 21518 (Microsoft Word Malformed Data Structures Code Execution Vulnerability).
Microsoft Word is prone to a remote code-execution vulnerability.
An attacker could exploit this issue by enticing a victim to open a malicious Word file. If the attack is successful, the attacker may be able to execute arbitrary code in the context of the currently logged-in user.
Note that this issue is distinct from issues described in BID 21451 (Microsoft Word Malformed String Arbitrary Remote Code Execution Vulnerability) and BID 21518 (Microsoft Word Malformed Data Structures Code Execution Vulnerability).
Exploit / POC
Microsoft Word Code Execution Vulnerability
A commercial exploit for CORE IMPACT v7 is available.
The following proof of concept is available:
A commercial exploit for CORE IMPACT v7 is available.
The following proof of concept is available:
Solution / Fix
Microsoft Word Code Execution Vulnerability
Solution:
Microsoft has released an advisory detailing updates to address this issue in supported versions of affected applications.
Microsoft Works Suite 2005 0
Microsoft Works Suite 2004
Microsoft Word 2000 SP3
Microsoft Word 2002 SP3
Microsoft Works Suite 2006 0
Microsoft Word 2003
Microsoft Word Viewer 2003 0
Solution:
Microsoft has released an advisory detailing updates to address this issue in supported versions of affected applications.
Microsoft Works Suite 2005 0
-
Microsoft Security Update for Word 2002 (KB929061)
http://www.microsoft.com/downloads/details.aspx?familyid=A1CA8DD7-0622 -4D66-A85F-A6586545EF9D&displaylang=en
Microsoft Works Suite 2004
-
Microsoft Security Update for Word 2002 (KB929061)
http://www.microsoft.com/downloads/details.aspx?familyid=A1CA8DD7-0622 -4D66-A85F-A6586545EF9D&displaylang=en
Microsoft Word 2000 SP3
-
Microsoft Security Update for Word 2000 (KB929139)
http://www.microsoft.com/downloads/details.aspx?familyid=F1E61E6A-BE3D -4536-AF76-A11D5CE67199&displaylang=en
Microsoft Word 2002 SP3
-
Microsoft Security Update for Word 2002 (KB929061)
http://www.microsoft.com/downloads/details.aspx?familyid=A1CA8DD7-0622 -4D66-A85F-A6586545EF9D&displaylang=en
Microsoft Works Suite 2006 0
-
Microsoft Security Update for Word 2002 (KB929061)
http://www.microsoft.com/downloads/details.aspx?familyid=A1CA8DD7-0622 -4D66-A85F-A6586545EF9D&displaylang=en
Microsoft Word 2003
-
Microsoft Security Update for Word 2003 (KB929057)
http://www.microsoft.com/downloads/details.aspx?familyid=882F8503-DA72 -43C9-B556-A002EC58F289&displaylang=en
Microsoft Word Viewer 2003 0
-
Microsoft Security Update for Word Viewer 2003 (KB924883)
http://www.microsoft.com/downloads/details.aspx?familyid=FB59798B-AFE2 -4103-9991-CBDD7686F9AD&displaylang=en
References
Microsoft Word Code Execution Vulnerability
References:
References:
- Microsoft Homepage (Microsoft)
- Microsoft Word Homepage (Microsoft )
- MS07-014 - Vulnerabilites in Microsoft Word Could Allow Remote Code Execution (Microsoft)