MS.WordPad.Embedded.COM.Code.Execution
Description
This indicates that a non-ActiveX COM object, such as OutlookExpress.AddressBook COM control, InstallEngine COM control, or Sysmon.3 COM contro, is embedded into the OLE section of a WordPad RTF document. It can result in arbitrary code execution or a crash.
Affected Products
Microsoft WordPad
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are not aware of any patches supplied by the vendor for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |