Intrusion Prevention

Office.OCX.ActiveX.Control.OpenWebFile.Program.Execution

Description

This indicates an attack attempt against an arbitrary program download and execution vulnerability in multiple Office OCX ActiveX controls.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted web page.

Affected Products

Office OCX Word Viewer OCX 3.2
Office OCX PowerPoint Viewer OCX 3.1
Office OCX Office Viewer OCX 3.0.1
Office OCX Excel Viewer OCX 3.2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.