Microsoft Object Linking and Embedding (OLE) Automation Heap Based Buffer Overflow Vulnerability

Microsoft Object Linking and Embedding (OLE) Automation Heap Based Buffer Overflow Vulnerability

Microsoft Object Linking and Embedding (OLE) Automation is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input before copying it to an insufficiently sized buffer.

An attacker could exploit this issue by enticing a victim to open a malicious web document.

Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in user.