MS10-105: Vulnerabilities in Microsoft Office Graphics Filters Could Allow for Remote Code Execution (968095)
High Nessus Plugin ID 51177
SynopsisArbitrary code can be executed on the remote host through the Microsoft Office filters.
DescriptionThe remote host is running a version of Microsoft Office with multiple memory corruption vulnerabilities.
A remote attacker could exploit this by tricking a user into viewing a specially crafted image file with Office, resulting in arbitrary code execution.
SolutionMicrosoft has released a set of patches for Office XP, 2003, 2007, 2010, and Office Converter Pack.