MS.Word.GLB.File.Parsing.Out.of.Bounds.Write
Description
This indicates an attack attempt to exploit an Out of Bounds Write Vulnerability in Microsoft Office.
The vulnerability is caused because of improper validation on user-supplied data while parsing GLB files. A remote attacker could exploit the vulnerability by enticing a user to open a specially crafted document. Successful exploitation results in the execution of arbitrary code in the security context of the target user.
Affected Products
Microsoft 365 Apps for Enterprise
Microsoft Office 2019
Microsoft Office 2019 for Mac
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34478
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |