=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2010/VULN058
_____________________________________________________________________

DATE                      : 10/02/2010

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Windows, Mac OS X running Microsoft Office XP,
                             Microsoft Office 2004.

======================================================================
KB978214
http://www.microsoft.com/technet/security/bulletin/MS10-003.mspx
______________________________________________________________________

Microsoft Security Bulletin MS10-003 - Important

Vulnerability in Microsoft Office (MSO) Could Allow Remote Code
Execution (978214)

Published: February 09, 2010

Version: 1.0

General Information

Executive Summary

  This security update resolves a privately reported vulnerability in
  Microsoft Office that could allow remote code execution if a user
  opens a specially crafted Office file. An attacker who successfully
  exploited this vulnerability could take complete control of an affected
  system. An attacker could then install programs; view, change, or delete
  data; or create new accounts with full user rights. Users whose accounts
  are configured to have fewer user rights on the system could be less
  impacted than users who operate with administrative user rights.

  This security update is rated Important for all supported editions of
  Microsoft Office XP and Microsoft Office 2004 for Mac.

  The update addresses the vulnerability by modifying the way that
  Microsoft Office opens files.

  Recommendation. Microsoft recommends that customers apply the update
  at the earliest opportunity.

  Known Issues. None

Affected Software

  Microsoft Office XP Service Pack 3
  Microsoft Office 2004 for Mac

Vulnerability Information

MSO.DLL Buffer Overflow - CVE-2010-0243

  A remote code execution vulnerability exists in the way Microsoft
  Office handles specially crafted Office files. An attacker who
  successfully exploited this vulnerability could take complete control
  of an affected system. An attacker could then install programs; view,
  change, or delete data; or create new accounts with full user rights.
  Users whose accounts are configured to have fewer user rights on the
  system could be less impacted than users who operate with administrative
  user rights.



======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================