MS.Office.MSO.Uninitialized.Object.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a remote Code Execution vulnerability in Microsoft Office.
The vulnerability is due to the way Office handles malformed Word files. An attacker can trick an unsuspecting user into opening a malicious Word file and execute arbitrary code within the context of the application.
Affected Products
Microsoft Office 2007 Service Pack 2
Microsoft Office 2010 and Microsoft Office 2010 Service Pack 1 (32-bit editions)
Microsoft Office 2010 and Microsoft Office 2010 Service Pack 1 (64-bit editions)
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://www.microsoft.com/technet/security/Bulletin/MS11-073.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |