CVE-2010-3217

Related Files

Microsoft Word LFO Parsing Double-Free

Posted Dec 24, 2010

Authored by Alin Rad Pop | Site secunia.com

Secunia Research has discovered a vulnerability in Microsoft Word, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused by a double-free error when processing LFO (List Format Override) records and can be exploited to corrupt memory via a specially crafted Word document. Successful exploitation may allow execution of arbitrary code.

tags | advisory, arbitrary

advisories | CVE-2010-3217

SHA-256 | 09199796312d54b98c05e03a55568621a9059426818c08614687c60d34bcd71a

Download | Favorite | View

VUPEN Security Advisory

Posted Oct 15, 2010

Authored by Chaouki Bekrar, VUPEN | Site vupen.com

VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Office Word. The vulnerability is caused by the use of an invalid pointer when processing certain structures in a Word document, which could be exploited by remote attackers to execute arbitrary code by tricking a user into opening a specially crafted Word file.

tags | advisory, remote, arbitrary

advisories | CVE-2010-3217

SHA-256 | 0b81fc43ae55d8d6596ae2125fafd9b719d96585bf6c10fdb7b52a635954fcc0

Download | Favorite | View