Microsoft Office FlashPix Image Converter (CVE-2010-3952) Multiple Buffer Overflow Vulnerabilities

Microsoft Office is prone to multiple remote buffer-overflow vulnerabilities because the software fails to perform adequate boundary-checks on user-supplied data.

An attacker can exploit these issues by enticing an unsuspecting user into opening an Office document containing a specially crafted FlashPix image.

Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will result in a denial-of-service condition.


Privacy Statement
Copyright 2010, SecurityFocus