Executive Summary
| Summary | |
|---|---|
| Title | Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2485663) |
| Informations | |||
|---|---|---|---|
| Name | MS11-033 | First vendor Publication | 2011-04-12 |
| Vendor | Microsoft | Last vendor Modification | 2011-04-12 |
| Severity (Vendor) | Important | Revision | 1.0 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Revision Note: V1.0 (April 12, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. This security update is rated Important for all supported editions of Windows XP and Windows Server 2003. All supported editions of Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 are not affected by the vulnerability. For more information, see the subsection, Affected and Non-Affected Software, in this section. |
Original Source
| Url : http://www.microsoft.com/technet/security/bulletin/MS11-033.mspx |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:12301 | |||
| Oval ID: | oval:org.mitre.oval:def:12301 | ||
| Title: | WordPad Converter Parsing Vulnerability | ||
| Description: | WordPad in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly parse fields in Word documents, which allows remote attackers to execute arbitrary code via a crafted .doc file, aka "WordPad Converter Parsing Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2011-0028 | Version: | 8 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Os | 1 | |
| Os | 2 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2011-04-13 | Name : WordPad Text Converters Remote Code Execution Vulnerability (2485663) File : nvt/secpod_ms11-033.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 71778 | Microsoft Windows Wordpad Word 97 Converter sprmTTextFlow / sprmTSplit PRLs P... A memory corruption flaw exists in Microsoft Windows. The Word 97 converter, mswrd8.wpc or mswrd864.wpc, fails to sanitize user-supplied input when parsing cell ranges supplied in sprmTTextFlow and sprmTSplit PRLs, resulting in memory corruption. With a specially crafted .doc file, a context-dependent attacker can execute arbitrary code. |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2011-04-14 | IAVM : 2011-B-0048 - Microsoft WordPad Text Converters Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0026517 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2020-01-14 | Microsoft Windows Wordpad Converter sprmT record heap overflow attempt RuleID : 52422 - Revision : 1 - Type : FILE-OFFICE |
| 2020-01-14 | Microsoft Windows Wordpad Converter sprmT record heap overflow attempt RuleID : 52421 - Revision : 1 - Type : FILE-OFFICE |
| 2014-11-16 | Microsoft Office Word Converter sprmTTextFflow overflow attempt RuleID : 31379 - Revision : 4 - Type : FILE-OFFICE |
| 2014-11-16 | Microsoft Office Word Converter sprmTSplit overflow attempt RuleID : 31378 - Revision : 4 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Word Converter sprmTSplit overflow attempt RuleID : 19707 - Revision : 13 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Word Converter sprmTTextFflow overflow attempt RuleID : 18643 - Revision : 17 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Word Converter sprmTSplit overflow attempt RuleID : 18642 - Revision : 14 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2011-04-13 | Name : Arbitrary code can be executed on the remote host through the installed versi... File : smb_nt_ms11-033.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-11-16 21:25:23 |
|
| 2014-02-17 11:46:57 |
|
| 2014-01-19 21:30:40 |
|
| 2013-11-11 12:41:22 |
|
