Buffer Overflow Vulnerability in Microsoft Office XP Graphics Filters
CVE-2010-3949

Currently unrated

Key Information:

Vendor: Microsoft
Status: Office Converter Pack; Office
Vendor: CVE Published:; 16 December 2010

Summary

A buffer overflow vulnerability exists in the TIFF image converter used in the graphics filters of Microsoft Office XP SP3 and Office Converter Pack. This flaw allows remote attackers to craft a malicious TIFF image within an Office document, potentially leading to arbitrary code execution on the affected system. Users of Microsoft Office XP are advised to apply security updates promptly to protect against exploits that leverage this vulnerability.

References

http://www.us-cert.gov/cas/techalerts/TA10-348A.html

third-party-advisoryx_refsource_CERT

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securitytracker.com/id?1024887

vdb-entryx_refsource_SECTRACK

EPSS Score

59% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 16, 2010
Vulnerability Reserved
Oct 14, 2010