Oval Definition:oval:org.mitre.oval:def:279
Revision Date:2012-05-28Version:8
Title:Microsoft Office Property Vulnerability
Description:Unspecified vulnerability in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via an Office file with a malformed property that triggers memory corruption related to record lengths, aka "Microsoft Office Property Vulnerability," a different vulnerability than CVE-2006-1316.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-2389
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s):Microsoft Office
Definition Synopsis
  • Microsoft Office 2000
  • Microsoft Office 2000 is installed
  • AND The Office 2000 (or later) version of Mso9.dll is installed.
  • AND the version of Mso9.dll is less than 9.0.0.8944
  • OR Microsoft Office XP
  • Microsoft Office XP is installed
  • AND The Office XP (or later) version of Mso.dll is installed.
  • AND the version of Mso.dll is less than 10.0.6804.0.
  • OR Microsoft Office 2003
  • Microsoft Office 2003 is installed
  • AND The Office 2003 (or later) version of Mso.dll is installed.
  • AND the version of Mso.dll is less than 11.0.8028.0.
  • OR Microsoft Project 2000
  • Microsoft Project 2000 SR1 is installed
  • AND The Office 2000 (or later) version of Mso9.dll is installed.
  • AND the version of Mso9.dll is less than 9.0.0.8944
  • OR Microsoft Project 2002
  • Microsoft Project 2002 SP1 is installed
  • AND The Office XP (or later) version of Mso.dll is installed.
  • AND the version of Mso.dll is less than 10.0.6804.0.
  • OR Microsoft Office Visio 2002
  • Microsoft Office Visio 2002 SP2 is installed
  • AND The Office XP (or later) version of Mso.dll is installed.
  • AND the version of Mso.dll is less than 10.0.6804.0.
  • OR Microsoft Word Viewer
  • Microsoft Word Viewer is installed
  • AND The Office 2003 (or later) version of Mso.dll is installed.
  • AND the version of Mso.dll is less than 11.0.8028.0.
  • OR Microsoft Excel Viewer 2003
  • Microsoft Excel Viewer 2003 is installed
  • AND The Office 2003 (or later) version of Mso.dll is installed.
  • AND the version of Mso.dll is less than 11.0.8028.0.
    • BACK