Memory Management Vulnerability in Microsoft Publisher by Microsoft
CVE-2011-1508

Currently unrated

Key Information:

Vendor: Microsoft
Status: Publisher
Vendor: CVE Published:; 14 December 2011

What is CVE-2011-1508?

Microsoft Publisher versions 2003 SP3 and 2007 SP2/SP3 exhibit a critical memory management flaw related to function pointers. This vulnerability may enable user-assisted remote attackers to execute arbitrary code when a specially crafted Publisher file is opened. It is crucial for users of the affected products to apply security updates and follow best practices to mitigate the risk associated with this vulnerability.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

28% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 14, 2011
Vulnerability Reserved
Mar 23, 2011