• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Word Macro Name Handler Buffer Overflow Vulnerability

Microsoft Word has been reported prone to a buffer overflow vulnerability.

The issue has been reported to present itself due to a lack of sufficient bounds checking performed in macro name handler routines. The procedures that copy the macro name into the reserved buffers have been reported to lack boundary checking conditional statements. As a result of this vulnerability, an attacker may construct a malicious word document and modify macro name string sizes so that they exceed the size of the reserved buffer in memory. When an unsuspecting user opens this Word document, memory corruption will occur.

Successful exploitation of this issue may allow an attacker to execute arbitrary code in the context of the user running the vulnerable application.