Month Of Abysssec Undisclosed Bugs - Microsoft Office Word 2007 suffers from a sprmCMajority related buffer overflow vulnerability.
d21c564cb52ae5bf024afc7f42265f413b00bb89a9c10a9d67600f923aaafb61
Month Of Abysssec Undisclosed Bugs - Microsoft Office Word 2007 suffers from a sprmCMajority related buffer overflow vulnerability.
a676299e1ce35ec6adfdf1ca08f36e5597b2f986903f5dc23140cb5d9566e512
Zero Day Initiative Advisory 10-150 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must open a malicious document. The specific flaw exists in the parsing of sprmCMajority records in a Word document. Due to the lack of parameter checking when processing sprmCMajority sprm groups it is possible to arbitrarily control the amount of data being written to a stack based buffer resulting in a stack overflow vulnerability which can overwrite critical exception structures. Successful exploitation can lead to remote code execution under the credentials of the currently logged in user.
8412c084cfda719ab9aa776080c4fa253edda24723f79f8dceb68433a547c9cc