MS14-082: Vulnerability in Microsoft Office Could Allow Remote Code Execution (3017349)
High Nessus Plugin ID 79831
SynopsisThe remote Windows host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is running a version of Microsoft Office that is affected by a remote code execution vulnerability due to a use-after-free memory issue caused by Microsoft Word not properly handling objects in memory. A remote attacker can exploit this vulnerability by convincing a user to open a specially crafted Office file, resulting in execution of arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Microsoft Office 2007, 2010, and 2013.