Microsoft Works Macro Name Length Buffer Overflow Lets Remote Users Execute Arbitrary Code
Categorie: Vulnerability Posted: 2003-11-12 by ReCall Views: 361 Source: Click here
Current Rating: Not rated
Details
Description: A buffer overflow vulnerability was reported in Microsoft Works in the processing of macros. A remote user can create a malicious document that, when opened by the target user, will execute arbitrary code with the privileges of the target user.
It is reported that Works does not properly validate the length of macro names embedded within a Works/Word document.
The vulnerability also affects Microsoft Word [a separate Alert has been issued for Microsoft Word].
Impact: A remote user can create a document that, when opened, will execute arbitrary code on the target user's system. The code will run with the privileges of the target user.
Solution: Microsoft has issued the following fixes:
Microsoft Word 2000 and Microsoft Works Suite 2001:
