Microsoft Office Malformed Drawing Object Remote Code Execution Vulnerability
BID:23826
Info
Microsoft Office Malformed Drawing Object Remote Code Execution Vulnerability
| Bugtraq ID: | 23826 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-1747 CVE-2008-0113 |
| Remote: | Yes |
| Local: | No |
| Published: | May 08 2007 12:00AM |
| Updated: | May 01 2008 01:56PM |
| Credit: | The vendor credits Arnaud Dovi, working with Zero Day Initiative, for discovering this issue. |
| Vulnerable: |
Microsoft Office XP SP3 Microsoft Office XP SP2 Microsoft Office XP SP1 Microsoft Office XP Microsoft Office Compatibility Pack 2007 0 Microsoft Office 2007 0 Microsoft Office 2004 for Mac 0 Microsoft Office 2003 SP2 Microsoft Office 2003 SP1 Microsoft Office 2003 0 Microsoft Office 2000 SP3 Microsoft Office 2000 SP2 Microsoft Office 2000 SP1 Microsoft Office 2000 Microsoft Internet Explorer for Unix SP2 Microsoft Excel Viewer 2003 0 Avaya Messaging Application Server 0 Avaya CIE 1.0 |
| Not Vulnerable: | |
Discussion
Microsoft Office Malformed Drawing Object Remote Code Execution Vulnerability
Microsoft Office is prone to a remote code-execution vulnerability.
An attacker may exploit this issue by enticing a victim into opening a malicious Office file.
Successful exploits will allow attackers to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.
Microsoft Office is prone to a remote code-execution vulnerability.
An attacker may exploit this issue by enticing a victim into opening a malicious Office file.
Successful exploits will allow attackers to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.
Exploit / POC
Microsoft Office Malformed Drawing Object Remote Code Execution Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft Office Malformed Drawing Object Remote Code Execution Vulnerability
Solution:
Microsoft has released security advisories MS07-025 and MS08-015, along with fixes to address this issue. Please see the references for more information.
KB934873 has been updated to inform users of a potential problem with the installation of fixes. Fixes may not have been successfully installed if either Microsoft Update or Microsoft Windows Server Update Services were used to install fixes on Windows Vista computers running Office 2007. Please see the references for more information about this issue.
Microsoft Office XP SP3
Microsoft Office 2003 SP2
Microsoft Office 2003 0
Microsoft Office XP SP2
Microsoft Office 2000 SP3
Microsoft Office 2004 for Mac 0
Microsoft Office 2003 SP1
Microsoft Office XP SP1
Solution:
Microsoft has released security advisories MS07-025 and MS08-015, along with fixes to address this issue. Please see the references for more information.
KB934873 has been updated to inform users of a potential problem with the installation of fixes. Fixes may not have been successfully installed if either Microsoft Update or Microsoft Windows Server Update Services were used to install fixes on Windows Vista computers running Office 2007. Please see the references for more information about this issue.
Microsoft Office XP SP3
-
Microsoft officexp-KB934705-FullFile-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=CB291AD9-348A -4C28-BEC7-53D2F35D0B72&displaylang=en
Microsoft Office 2003 SP2
-
Microsoft office2003-KB934180-FullFile-ENU.exe
http://www.microsoft.com/downloads/details.aspx?FamilyId=819857CC-3777 -4E4A-9CC3-685FC079A254 -
Microsoft Security Update for Microsoft Office 2003 (KB947355)
http://www.microsoft.com/downloads/details.aspx?familyid=9f25922c-d3c2 -4ef1-b164-8a21a77d29aa
Microsoft Office 2003 0
-
Microsoft Security Update for Microsoft Office 2003 (KB947355)
http://www.microsoft.com/downloads/details.aspx?familyid=9f25922c-d3c2 -4ef1-b164-8a21a77d29aa
Microsoft Office XP SP2
-
Microsoft officexp-KB934705-FullFile-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=CB291AD9-348A -4C28-BEC7-53D2F35D0B72&displaylang=en
Microsoft Office 2000 SP3
-
Microsoft office2000-kb934526-fullfile-enu.exe
http://www.microsoft.com/downloads/details.aspx?familyid=A693C271-4B94 -4541-953A-0A2DB4587B23&displaylang=en
Microsoft Office 2004 for Mac 0
-
Microsoft Office2004-1135UpdateEN.dmg
http://www.microsoft.com/mac/downloads.aspx?pid=download&location=/mac /download/Office2004/Office2004_1135.xml
Microsoft Office 2003 SP1
-
Microsoft Security Update for Microsoft Office 2003 (KB947355)
http://www.microsoft.com/downloads/details.aspx?familyid=9f25922c-d3c2 -4ef1-b164-8a21a77d29aa
Microsoft Office XP SP1
-
Microsoft officexp-KB934705-FullFile-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=CB291AD9-348A -4C28-BEC7-53D2F35D0B72&displaylang=en
References
Microsoft Office Malformed Drawing Object Remote Code Execution Vulnerability
References:
References:
- ASA-2007-186: MS07-025 Vulnerability in Microsoft Office Could Allow Remote Code (Avaya)
- KB934873: MS07-025: Vulnerability in Microsoft Office could allow remote code ex (Microsoft)
- Microsoft Office Product Homepage (Microsoft)
- Microsoft Security Bulletin MS07-025 (Microsoft)
- ZDI-08-008: Microsoft Excel BIFF File Format Cell Record Parsing Memory Corrupti ([email protected])
- Microsoft Security Bulletin MS08-016 (Microsoft)
- Vulnerability Note VU#853184 (CERT)