Intrusion Prevention

MS.Word.Malformed.Document.Integer.Remote.Buffer.Overflow

Description

This indicates a possible attempt to exploit a remote Buffer Overflow vulnerability in Microsoft Words and Work suites.
The vulnerability is due to the application's failure to properly sanitize Word documents while parsing them. A remote attacker can exploit this to execute arbitrary code on an affected system with the rights of the victim, when the victim opens the document.

Affected Products

Microsoft Word 2003 SP1 ,2002 SP3 and earlier versions.
Microsoft Works suite 2004 and earlier versions.

Impact

System Compromise.

Recommended Actions

Apply the appropriate security patch to the system:
http://technet.microsoft.com/en-us/security/bulletin/ms05-023

CVE References

CVE-2004-0963