Home / bulletins

MS09-073 - Important: Vulnerability in WordPad and Office Text Converters Could Allow Remote Code Execution (975539) - Version:1.0

Posted on 08 December 2009

There is an newer version: MS09-073 - Version: 2.0

Important

Severity Rating: Important - Revision Note: V1.0 (December 8, 2009): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft WordPad and Microsoft Office text converters. The vulnerability could allow remote code execution if a specially crafted Word 97 file is opened in WordPad or Microsoft Office Word. An attacker who successfully exploited this vulnerability could gain the same privileges as the user. Users whose accounts are configured to have fewer privileges on the system could be less impacted than users who operate with administrative privileges.

Link

Other versions

 

TOP