Microsoft OneNote File Processing CVE-2014-2815 Remote Code Execution Vulnerability
BID:69098
Info
Microsoft OneNote File Processing CVE-2014-2815 Remote Code Execution Vulnerability
| Bugtraq ID: | 69098 |
| Class: | Unknown |
| CVE: |
CVE-2014-2815 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 12 2014 12:00AM |
| Updated: | Aug 12 2014 12:00AM |
| Credit: | Eduardo Prado, working with Beyond Security's. |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Microsoft OneNote File Processing CVE-2014-2815 Remote Code Execution Vulnerability
Microsoft OneNote is prone to a remote code-execution vulnerability.
An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.
Microsoft OneNote is prone to a remote code-execution vulnerability.
An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions.
Exploit / POC
Microsoft OneNote File Processing CVE-2014-2815 Remote Code Execution Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft OneNote File Processing CVE-2014-2815 Remote Code Execution Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Microsoft OneNote File Processing CVE-2014-2815 Remote Code Execution Vulnerability
References:
References:
- Microsoft Homepage (Microsoft)
- Microsoft Security Bulletin MS14-048 (Microsoft)