Microsoft Works File Converter Section Length Header Remote Heap Overflow Vulnerability

info
discussion
exploit
solution
references

Microsoft Works File Converter Section Length Header Remote Heap Overflow Vulnerability

Microsoft Works File Converter is prone to a remote heap-overflow vulnerability because it fails to adequately validate user-supplied input.

An attacker could exploit this issue by enticing a victim to open a malicious '.wps' file.

Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in user.