Intrusion Prevention

MS.Office.Word.Macro.Byte.Opcode.Handling.Memory.Corruption

Description

This indicates an attack attempt against a remote Code Execution vulnerability in Microsoft Word.
The vulnerability is caused by an error when the vulnerable software handles malformed DOC files. The vulnerability is due to an error when the vulnerable software handles a maliciously crafted DOC file.

Affected Products

Microsoft Word 2003 Service Pack 3(2826020)
Microsoft Word 2007 Service Pack 3(2827330)
Microsoft Office Compatibility Pack Service Pack 3(2827329)

Impact

System Compromise: Remote attacker can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS13-086

CVE References

CVE-2013-3891