MS06-039: Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (915384)
Medium Nessus Plugin ID 22033
SynopsisArbitrary code can be executed on the remote host through the Microsoft Office filters.
DescriptionThe remote host is running a version of some Microsoft Office filters that are subject to various flaws which could allow arbitrary code to be run.
An attacker could use these to execute arbitrary code on this host.
To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it import it with Microsoft Office.
SolutionMicrosoft has released a set of patches for Office 2000, XP and 2003.