This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
Information disclosure can occur if an attacker convinces a user to
open a specially crafted OneNote file.
The version of Microsoft OneNote running on the remote host is
affected by a memory allocation flaw. By convincing a user to open a
specially crafted OneNote file, a remote attacker can exploit this to
gain access to sensitive information.
See also :
Microsoft has released a set of patches for OneNote 2010 SP1.
Risk factor :
High / CVSS Base Score : 7.1
CVSS Temporal Score : 5.3
Public Exploit Available : false