OVAL Reference oval:org.mitre.oval:def:14558

Oval Definition:

oval:org.mitre.oval:def:14558

Revision Date:	2014-05-26	Version:	14
Title:	TrueType Font Parsing Vulnerability
Description:	Use-after-free vulnerability in Microsoft Office 2007 SP2 and SP3, Office 2010 Gold and SP1, and Office for Mac 2011 allows remote attackers to execute arbitrary code via a crafted Word document, aka "Word Use After Free Vulnerability."
Family:	windows	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2011-1983
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Microsoft Office 2007 Microsoft Office 2010
Definition Synopsis
Microsoft Office 2007 (KB2596785) Microsoft Office 2007 SP2/SP3 Microsoft Office 2007 SP2 is installed OR Microsoft Office 2007 SP3 is installed AND Msptls.dll version is less than 12.0.6654.5000 OR Microsoft Office 2010 (KB2589320) Microsoft Office 2010 is installed AND Msptls.dll is less than 14.0.6112.5000