Intrusion Prevention

MS.Word.RTF.Parsing.Buffer.Overflow

Description

This indicates a possible attack against a buffer-overflow vulnerability in Microsoft Office.
The vulnerability is due to the vulnerable software's handling of RTF data. An attacker may exploit this to execute arbitrary code by sending a malicious .rtf file.

Affected Products

Microsoft Office XP Service Pack 3
Microsoft Office 2003 Service Pack 3
Microsoft Office System 2007 Service Pack 2

Impact

System compromise

Recommended Actions

Apply the following update supplied by the vendor:
http://www.microsoft.com/technet/security/Bulletin/ms10-056.mspx

CVE References

CVE-2010-1902