Vulnerability

CERT-In Vulnerability Note CIVN-2006-0100
Microsoft Office Multiple Vulnerabilities

Original Issue Date:October 11, 2006

Severity Rating: HIGH

Systems Affected

Microsoft Office 2000 Service Pack 3

Microsoft Access 2000, Microsoft Excel 2000, Microsoft FrontPage 2000, Microsoft Outlook 2000, Microsoft PowerPoint 2000, Microsoft Publisher 2000, Microsoft Word 2000

Microsoft Office XP Service Pack 3

Microsoft Access 2002, Microsoft Excel 2002, Microsoft FrontPage 2002, Microsoft Outlook 2002, Microsoft PowerPoint 2002, Microsoft Publisher 2002, Microsoft Visio 2002

Microsoft Office 2003 Service Pack 1 or Service Pack 2

Microsoft Access 2003, Microsoft Excel 2003, Microsoft Excel 2003 Viewer, Microsoft FrontPage 2003, Microsoft InfoPath 2003, Microsoft OneNote 2003, Microsoft Outlook 2003, Microsoft PowerPoint 2003, Microsoft Project 2003, Microsoft Publisher 2003, Microsoft Visio 2003, Microsoft Word 2003, Microsoft Word 2003 Viewer

Microsoft Project 2000 Service Release 1

Microsoft Project 2002 Service Pack 1

Microsoft Visio 2002 Service Pack 2

Overview

Certain vulnerabilities have been reported in Microsoft Office 2000, Office XP and Office 2003. A remote attacker could exploit these vulnerabilities to take complete control of affected systems.

If a user was logged on with administrative user rights, an attacker who successfully exploited these vulnerabilities could take complete control of an affected system.

Description

Office Improper Memory Access Vulnerability ( CVE-2006-3434   )

This vulnerability is caused because Office does not perform sufficient data validation when processing the contents of a file. This could be exploited by an attacker by sending a malicious office file to affected systems. When Office opens a specially crafted file and parses a malformed string, it may corrupt system memory in such a way that an attacker could execute arbitrary code.

Office Malformed Chart Record Vulnerability ( CVE-2006-3650   )

This vulnerability is caused due to insufficient data validation by Office when processing the contents of a file. This could be exploited by an attacker by sending a specially crafted Office file, with malformed chart record, to affected systems. When Office opens the malicious file and parses a malformed chart record, it may corrupt system memory in such a way that an attacker could execute arbitrary code.

Office Malformed Record Memory Corruption Vulnerability- ( CVE-2006-3864   )

This vulnerability is caused due to insufficient data validation by Office when processing the contents of a file and parsing of strings. This could be exploited by an attacker by sending a malicious office file to affected system through website or email. When Office opens the specially crafted file and parses a malformed string, it may corrupt system memory in such a way that an attacker could execute arbitrary code.

Microsoft Office Smart Tag Parsing Vulnerability ( CVE-2006-3868   )

This vulnerability is caused because Office does not perform sufficient data validation when processing the contents of file and Smart Tags. When Microsoft Office opens a specially crafted Office file and parses a malformed Smart Tag, it may corrupt system memory in such a way that an attacker could execute arbitrary code.

Solution

Apply appropriate patches as mentioned in Microsoft Security Bulletin MS06-062

Vendor Information

Microsoft
http://www.microsoft.com/technet/security/Bulletin/MS06-062.mspx

References

Microsoft
http://www.microsoft.com/technet/security/Bulletin/MS06-062.mspx

CVE Name
CVE-2006-3434
CVE-2006-3650
CVE-2006-3864
CVE-2006-3868

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Email: info@cert-in.org.in
Phone: +91-11-2436857

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, CGO Complex, Lodhi Road,
New Delhi - 110 003
India