Vulnerability Note VU#682820
Microsoft Office routing slip buffer overflow
Microsoft Office contains a buffer overflow in the parsing of routing slips, which may allow an attacker to execute arbitrary code on a vulnerable system.
According to Microsoft Security Bulletin MS06-012:
Microsoft Office contains a buffer overflow in the handling of routing slips.
By convincing a user to open a specially crafted Microsoft Office document, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.
Install an update
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||-||14 Mar 2006|
CVSS Metrics (Learn More)
Thanks to Katie Miras of Symantec for reporting this vulnerability. Ollie Whitehouse of Symantec is credited with discovering the vulnerability.
This document was written by Will Dormann.
- CVE IDs: CVE-2006-0009
- Date Public: 14 Mar 2006
- Date First Published: 14 Mar 2006
- Date Last Updated: 27 Apr 2006
- Severity Metric: 33.41
- Document Revision: 15
If you have feedback, comments, or additional information about this vulnerability, please send us email.