MS.Office.Word.Document.Handling.Code

Name	MS.Office.Word.Document.Handling.Code.Execution
Last Updated Date	Aug 15, 2008
Release Date	Aug 08, 2008
Severity	Critical
Impact	System Compromise: Remote attackers can gain control of vulnerable systems.
Description	This indicates an attempt to exploit a code-execution vulnerability in Microsoft Office Word. The vulnerability is caused by an error when the vulnerable software handles a crafted .doc file. It allows a remote attacker to execute arbitrary code.
Affected Products	Microsoft Office XP Microsoft Word 2002
Recommended Actions	Use Microsoft Office Word 2003 Viewer or Microsoft Office Word 2003 Viewer SP3 in opening and viewing Microsoft Word files.
Common Vulnerabilities and Exposures (CVE)	http://cve.mitre.org/cgi-bin/cvename.cgi?name=2008-2244
Microsoft Bulletin ID	MS08-042 http://www.microsoft.com/technet/security/Bulletin/MS08-042.mspx
Reference/s	http://www.securityfocus.com/bid/30124 (BugTraq) http://www.vupen.com/english/advisories/2008/2028 (FrSIRT) http://secunia.com/advisories/30975 http://www.microsoft.com/technet/security/advisory/953635.mspx

Reference: VID-15718