CVE-2009-0235 Information
Description
Stack-based buffer overflow in the Word 97 text converter in WordPad in Microsoft Windows 2000 SP4 XP SP2 and SP3 and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted Word 97 file that triggers memory corruption related to use of inconsistent integer data sizes for an unspecified length field aka \WordPad Word 97 Text Converter Stack Overflow Vulnerability.\
Reference
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=783 http://osvdb.org/53664 http://www.securityfocus.com/bid/34470 http://www.securitytracker.com/id?1022043 http://www.us-cert.gov/cas/techalerts/TA09-104A.html http://www.vupen.com/english/advisories/2009/1024 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-010 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A5893
Share on: