Executive Summary
| Summary | |
|---|---|
| Title | Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (951207) |
| Informations | |||
|---|---|---|---|
| Name | MS08-026 | First vendor Publication | 2008-05-13 |
| Vendor | Microsoft | Last vendor Modification | 2008-05-13 |
| Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| This security update resolves several privately reported vulnerabilities in Microsoft Word that could allow remote code execution if a user opens a specially crafted Word file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 50 % | CWE-399 | Resource Management Errors |
| 50 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:5012 | |||
| Oval ID: | oval:org.mitre.oval:def:5012 | ||
| Title: | Word Cascading Style Sheet (CSS) Vulnerability | ||
| Description: | Use-after-free vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via an HTML document with a large number of Cascading Style Sheets (CSS) selectors, related to a "memory handling error" that triggers memory corruption. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2008-1434 | Version: | 11 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Word Microsoft Office Compatibility Pack |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:5494 | |||
| Oval ID: | oval:org.mitre.oval:def:5494 | ||
| Title: | Object Parsing Vulnerability | ||
| Description: | Unspecified vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via a Rich Text Format (.rtf) file with a malformed string that triggers a "memory calculation error" and a heap-based buffer overflow, aka "Object Parsing Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2008-1091 | Version: | 13 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Word Microsoft Office Compatibility Pack |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 45032 | Microsoft Word Document Malformed CSS Handling Memory Corruption Arbitrary Co... |
| 45031 | Microsoft Office RTF File Handling Object Parsing Arbitrary Code Execution A memory corruption flaw exists in Office. Word and Outlook fail to validate strings contained in RTF files resulting in memory corruption. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity. |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-09-05 | Microsoft Word malformed css remote code execution attempt RuleID : 50895 - Revision : 1 - Type : FILE-OFFICE |
| 2019-09-05 | Microsoft Word malformed css remote code execution attempt RuleID : 50894 - Revision : 1 - Type : FILE-OFFICE |
| 2016-04-14 | Microsoft Office Word RTF parsing memory corruption attempt RuleID : 38237 - Revision : 1 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Word RTF parsing memory corruption attempt RuleID : 17743 - Revision : 19 - Type : FILE-OFFICE |
| 2014-01-10 | RTF control word overflow attempt RuleID : 13803 - Revision : 15 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Word malformed css remote code execution attempt RuleID : 13790 - Revision : 13 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2010-10-20 | Name : An application installed on the remote Mac OS X host is affected by multiple ... File : macosx_ms08-026.nasl - Type : ACT_GATHER_INFO |
| 2008-05-13 | Name : Arbitrary code can be executed on the remote host through Microsoft Word. File : smb_nt_ms08-026.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:45:57 |
|
| 2014-01-19 21:30:11 |
|
| 2013-05-11 00:49:19 |
|
