Microsoft Word '.doc 'Remote Denial of Service Vulnerability
Release date:
Updated on:
Affected Systems:
Microsoft Word XP
Microsoft Word 2003 SP3
Microsoft Word 2003 SP2
Unaffected system:
Microsoft Word 2010
Description:
--------------------------------------------------------------------------------
Bugtraq id: 63777
CVE (CAN) ID: CVE-2013-6801
Microsoft Word is a Microsoft text processor application.
Microsoft Word 2003 SP2/sp3on Windows XP SP3 has the vulnerability of Remote Denial of Service (DoS). The remote attacker can use the .doc file embedded in the image to consume CPU resources and cause DOS.
<* Source: absane
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Microsoft
---------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://technet.microsoft.com/security/bulletin/