Microsoft Step-By-Step Interactive Training Bookmark Link Buffer Overflow Vulnerability

Microsoft Step-By-Step Interactive Training is prone to a buffer overflow vulnerability. This is due to a boundary condition error related to validation of data in bookmark link files. As bookmark link files may originate from an external source, this issue may be remotely exploitable.

Successful exploitation will result in execution of arbitrary code in the context of the currently logged in user.

A number of third-party providers may supply the Step-by-Step Interactive training program as a part of their products. There is not a conclusive list of products that may have installed this software.


Privacy Statement
Copyright 2010, SecurityFocus