Revision Date: | 2007-02-20 | Version: | 3 |
Title: | Windows Project Professional URL Buffer Overflow |
Description: | Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames. |
Family: | windows | Class: | vulnerability |
Status: | ACCEPTED | Reference(s): | CVE-2004-0848
|
Platform(s): | Microsoft Windows 2000 Microsoft Windows 98 Microsoft Windows ME Microsoft Windows NT Microsoft Windows XP
| Product(s): | Microsoft Project Professional 2002
|
Definition Synopsis |
Windows Project Professional 2002 Service Pack 1 is installed AND the version of mso.dll is less than 10.0.6735.0
AND NOT Patch KB873355 installed
|