Release DateJun 23, 2009 |
Severitycritical |
ImpactSystem compromise |
DescriptionThis indicates a possible attack against a stack-based overflow vulnerability in WordPerfect 6.x Converter in Microsoft Office Word 2000 SP3.The vulnerability is caused by the inability of Microsoft Office Converter to properly check the length field in a WordPerfect 6.x file, leading to possible remote arbitrary code execution. |
Affected ProductsWordPerfect 6.x Converter in Microsoft Office Word 2000 SP3 |
Recommended ActionsPlease refer to the Microsoft advisory for detailed information and patches:http://www.microsoft.com/technet/security/Bulletin/MS09-010.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-cve-2009-0088 |
Reference/shttp://www.microsoft.com/technet/security/Bulletin/ms09-010.mspx (MS-ID) |