Heap Corruption Vulnerability in Microsoft Works 9
CVE-2012-2550

Currently unrated

Key Information:

Vendor: Microsoft
Status: Works
Vendor: CVE Published:; 9 October 2012

What is CVE-2012-2550?

Microsoft Works 9 is susceptible to a vulnerability that enables remote attackers to execute arbitrary code or trigger a denial of service through specially crafted Word .doc files. This security flaw arises due to heap memory corruption, posing risks to users who open malicious documents. Effective mitigation involves applying the latest security updates as recommended by Microsoft.

References

http://www.securitytracker.com/id?1027621

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/55796

vdb-entryx_refsource_BID

http://secunia.com/advisories/50844

third-party-advisoryx_refsource_SECUNIA

EPSS Score

66% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 9, 2012
Vulnerability Reserved
May 9, 2012