=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2006/VULN326
_____________________________________________________________________

DATE                      : 14/06/2006

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running Office 2000, Office XP,
                             Office 2003, Word Viewer, Word 2000, Word 2002,
                                 Word 2003.

======================================================================

MS06-027 - Vulnerability in Microsoft Word Could Allow
Remote Code Execution (917336)

Affected Software:
	- Microsoft Office 2000 Service Pack 3
	- Microsoft Word 2000
	- Microsoft Office XP Service Pack 3
	- Microsoft Word 2002
	- Microsoft Office 2003 Service Pack 1 or Service Pack 2
	- Microsoft Word 2003
	- Microsoft Word Viewer 2003
	- Microsoft Works Suites:
	- Microsoft Works Suite 2000
	- Microsoft Works Suite 2001
	- Microsoft Works Suite 2002
	- Microsoft Works Suite 2003
	- Microsoft Works Suite 2004
	- Microsoft Works Suite 2005
	- Microsoft Works Suite 2006

Non-Affected Software:
	- Microsoft Word v. X for Mac
	- Microsoft Word 2004 for Mac

Full MS06-027 advisory:
http://www.microsoft.com/technet/security/Bulletin/MS06-027.mspx

Vulnerability Details

Microsoft Word Malformed Object Pointer Vulnerability - CVE-2006-2492

	When a user opens a specially crafted Word document using a malformed
	object pointer, it may corrupt system memory in such a way that an
	attacker could execute arbitrary code.

	If a user is logged on with administrative user rights, an attacker
	who successfully exploited this vulnerability could take complete
	control of an affected system. An attacker could then install programs;
	view, change, or delete data; or create new accounts with full user
	rights. Users whose accounts are configured to have fewer user rights
	on the system could be less affected than users who operate with
	administrative user rights.

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================