MS10-079: Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2293194)
High Nessus Plugin ID 49956
SynopsisArbitrary code can be executed on the remote host through Microsoft Word.
DescriptionThe remote Windows host is running a version of Microsoft Word or Word Viewer that is affected by several vulnerabilities.
If an attacker can trick a user on the affected host into opening a specially crafted Word file, they could leverage this issue to execute arbitrary code subject to the user's privileges.
SolutionMicrosoft has released a set of patches for Office XP, 2003, 2007, 2010, Word Viewer, Office Compatibility Pack, and Word Web Apps.