CVE-2008-4025

Related Files

HP Security Bulletin 2008-01.83

Posted Dec 30, 2008

Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.

tags | advisory, vulnerability

advisories | CVE-2008-3704, CVE-2008-4252, CVE-2008-4253, CVE-2008-4254, CVE-2008-4255, CVE-2008-4256, CVE-2008-2249, CVE-2008-3465, CVE-2008-4024, CVE-2008-4025, CVE-2008-4026, CVE-2008-4027, CVE-2008-4028, CVE-2008-4030, CVE-2008-4031, CVE-2008-4837, CVE-2008-4258, CVE-2008-4259

SHA-256 | 060a4c69b772c5dbbe93812a8abd274eb7234e26034b2a9e635c88b055b0e945

Download | Favorite | View

Microsoft Word RTF Polyline/Polygon Integer Overflow

Posted Dec 9, 2008

Authored by Dyon Balding | Site secunia.com

Secunia Research has discovered a vulnerability in Microsoft Office Word, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an integer overflow error when calculating the space required for the specified number of points in a polyline or polygon. This can be exploited to cause a heap-based buffer overflow during parsing of objects in Rich Text Format (.rtf) files e.g. when a user opens a specially crafted .rtf file with Word or previews a specially crafted e-mail. Successful exploitation may allow execution of arbitrary code. Microsoft Office Word 2003 SP3 and Microsoft Office Word Viewer 2003 SP3 are affected.

tags | advisory, overflow, arbitrary

advisories | CVE-2008-4025

SHA-256 | c660078d68293331438cefc112487a9fcec1415bee279c37d6d6e61a39eba659

Download | Favorite | View