Microsoft Word 2007 WWLib.DLL Unspecified Document File Buffer Overflow Vulnerability
BID:23380
Info
Microsoft Word 2007 WWLib.DLL Unspecified Document File Buffer Overflow Vulnerability
| Bugtraq ID: | 23380 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 09 2007 12:00AM |
| Updated: | Jan 21 2009 12:52AM |
| Credit: | Mati Aharoni is credited with discovering this issue. |
| Vulnerable: |
Microsoft Word 2007 0 Microsoft Office Word 2007 0 |
| Not Vulnerable: | |
Discussion
Microsoft Word 2007 WWLib.DLL Unspecified Document File Buffer Overflow Vulnerability
Microsoft Word is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
An attacker can exploit this issue by enticing a victim to open a malicious Word file.
Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.
Microsoft Word is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
An attacker can exploit this issue by enticing a victim to open a malicious Word file.
Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.
Exploit / POC
Microsoft Word 2007 WWLib.DLL Unspecified Document File Buffer Overflow Vulnerability
The following proof of concept is available:
The following proof of concept is available:
Solution / Fix
Microsoft Word 2007 WWLib.DLL Unspecified Document File Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Microsoft Word 2007 WWLib.DLL Unspecified Document File Buffer Overflow Vulnerability
References:
References:
- Microsoft Homepage (Microsoft)
- Microsoft Office Product Homepage (Microsoft)
- My 7 line python fuzzer found several file format bugs in 3 hours (Mati Aharoni)