Home / bulletins MS09-073 - Important: Vulnerability in WordPad and Office Text Converters Could Allow Remote Code Execution (975539) - Version:1.1
Posted on 09 December 2009
There is an newer version: MS09-073 - Version: 2.0
ImportantSeverity Rating: Important - Revision Note: V1.1 (December 9, 2009): Removed a redundant entry for the Microsoft Office Compatibility Pack from the non-affected software table. Also corrected several deployment reference tables to clarify that in some cases, this update does not require a restart. This is an informational change only. Summary: This security update resolves a privately reported vulnerability in Microsoft WordPad and Microsoft Office text converters. The vulnerability could allow remote code execution if a specially crafted Word 97 file is opened in WordPad or Microsoft Office Word. An attacker who successfully exploited this vulnerability could gain the same privileges as the user. Users whose accounts are configured to have fewer privileges on the system could be less impacted than users who operate with administrative privileges.
Other versions
- MS09-073 - Version: 1.0
- MS09-073 - Version: 1.1
- MS09-073 - Version: 2.1
- MS09-073 - Version: 2.0
