MS08-012 - Critical: Vulnerabilities in Microsoft Office Publisher Could Allow Remote Code Execution (947085) - Version:1.1 |
|
| BugsAlert Home > MS08-012 - Critical: Vulnerabilities in Microsoft Office Publisher Could Allow Remote Code Execution (947085) - Version:1.1 | |
|
Severity Rating: Critical - Revision Note: V1.1 (February 13, 2008): Bulletin updated to reflect that there are no known issues with installing this security update, and to list Microsoft Publisher 2003 Service Pack 2 (instead of Service Pack 3) in the MBSA and SMS tables under Detection and Deployment.Summary: This critical security update resolves two privately reported vulnerabilities in Microsoft Office Publisher that could allow remote code execution if a user opens a specially crafted Publisher file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Original Source: http://www.microsoft.com/technet/security/bulletin/MS08-012.mspx?pubDate=2008-02-13 Learn more about MS08-012 - Critical: Vulnerabilities in Microsoft Office Publisher Could Allow Remote Code Execution (947085) - Version:1.1 |
|
|
Tags: ms08-012 critical vulnerabilities microsoft office publisher remote code execution 947085 version 1.1 |
|
Related Items |
|
|
Joomla Component netinvoice 1.2.0 SP1 SQL Injection Vulnerability
|
|
|
FrSIRT - Fedora Security Update Fixes Geda-gnetlist Insecure Temporary File
|
|
|
CVE-2008-1915 (blogworx)
|
|
|
GWExtranet Information Disclosure and Script Insertion Vulnerabilities
|
|
|
CVE-2008-3153 (triton_cms_pro)
|
|
|
FrSIRT - Sun Solaris NFSv4 Client Kernel Module Denial of Service Vulnerability
|
|
|
CVE-2007-4473 (OPC Server)
|
|
