Oval Definition:oval:org.mitre.oval:def:389
Revision Date:2012-05-28Version:7
Title:Office Improper Memory Access Vulnerability
Description:Unspecified vulnerability in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string that triggers memory corruption.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-3434
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s):Microsoft Office
Definition Synopsis
  • AND
  • Microsoft Office 2000 is installed
  • AND The Office 2000 (or later) version of Mso9.dll is installed.
  • AND The version of mso9.dll is less than 9.0.0.8950.
  • OR
  • Microsoft Office XP is installed
  • AND The Office XP (or later) version of Mso.dll is installed.
  • AND The version of mso.dll is less than 10.0.6817.0.
  • OR
  • Microsoft Office 2003 is installed
  • AND The Office 2003 (or later) version of Mso.dll is installed.
  • AND The version of mso.dll is less than 11.0.8107.0.
  • OR
  • Microsoft Project 2000 SR1 is installed
  • AND The Office 2000 (or later) version of Mso9.dll is installed.
  • AND The version of mso9.dll is less than 9.0.0.8950.
  • OR
  • Microsoft Project 2002 SP1 is installed
  • AND The Office XP (or later) version of Mso.dll is installed.
  • AND The version of mso.dll is less than 10.0.6817.0.
  • OR
  • Microsoft Office Visio 2002 SP2 is installed
  • AND The Office XP (or later) version of Mso.dll is installed.
  • AND The version of mso.dll is less than 10.0.6817.0.
  • OR
  • Microsoft Word Viewer is installed
  • AND The Office 2003 (or later) version of Mso.dll is installed.
  • AND The version of mso.dll is less than 11.0.8107.0.
  • OR
  • Microsoft Excel Viewer 2003 is installed
  • AND The Office 2003 (or later) version of Mso.dll is installed.
  • AND The version of mso.dll is less than 11.0.8107.0.
    • BACK