Microsoft Office Drawing Shapes memory corruption vulnerability
Added: 04/04/2008CVE: CVE-2008-0118
BID: 28146
OSVDB: 42709
Background
Microsoft Office is a package which provides word processing, spreadsheet, presentation, e-mail, and calendaring capabilities for Microsoft Windows workstations.Problem
A memory corruption vulnerability allows command execution when a user opens a specially crafted Microsoft Office file.Resolution
Apply the patch referenced in Microsoft Security Bulletin 08-016.References
http://www.microsoft.com/technet/security/bulletin/MS08-016.mspxLimitations
Exploit works on Microsoft PowerPoint 2002 SP3 with the patch KB934705.Platforms
WindowsBack to exploit index