Vulnerabilitate in Microsoft Office
A fost raportata o vulnerabilitate in Microsoft Office, care pot fi exploatate de atacatori pentru a compromite un sistem afectat.
Vulnerabilitatea este cauzata de o eroare nespecificata ce poate aparea la procesarea obiectelor drawing care poate fi exploatata prin intermediul unui fisier Office ce contine un obiect drawing special conceput.
Exploatarea cu succes permite executia de cod arbitrar.
Programe afectate:
Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel Viewer 2003
Microsoft Expression Web 1.x
Microsoft Frontpage 2000
Microsoft Frontpage 2002
Microsoft Frontpage 2003
Microsoft Office 2000
Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Small Business Edition
Microsoft Office 2003 Standard Edition
Microsoft Office 2003 Student and Teacher Edition
Microsoft Office 2004 for Mac
Microsoft Office 2007
Microsoft Office Excel 2007
Microsoft Office Publisher 2007
Microsoft Office SharePoint Designer 2007
Microsoft Office XP
Microsoft Publisher 2000
Microsoft Publisher 2002
Microsoft Publisher 2003
Solutie:
Este recomandata aplicarea programelor corectoare de tip patch lansate de producator deoarece acestea elimina vulnerabilitatea descrisa mai sus. Acestea pot fi descarcate de la urmatoarele adrese:
Microsoft Office 2000 SP3:
www.microsoft.com/downloads/details.aspx?FamilyId=A693C271-4B94-4541-953A-0A2DB4587B23
Microsoft Office XP SP3:
www.microsoft.com/downloads/details.aspx?FamilyId=CB291AD9-348A-4C28-BEC7-53D2F35D0B72
Microsoft Office 2003 SP2:
www.microsoft.com/downloads/details.aspx?FamilyId=819857CC-3777-4E4A-9CC3-685FC079A254
Microsoft Office System 2007:
www.microsoft.com/downloads/details.aspx?FamilyId=A3DC8E3F-90DD-4D0C-88B8-2EC88FF3A588
Microsoft Office 2004 for Mac:
www.microsoft.com/mac
Tag: securitate
Leave a comment