KLA10012
Vulnerability in Microsoft Word 2007 & Office Compatibility Pack
Updated: 03/30/2015
CVSS
?
9.3
Detect date
?
06/10/2014
Severity
?
Critical
Description

An unspecified vulnerability was found in the Word 2007 and Office Compatibility Pack. By exploiting this vulnerability malicious users can execute arbitrary code or cause a denial of service. This vulnerability can be exploited from the network at point related to an unknown application via a specially designed embedded font.

Affected products

Word 2007 Service Pack 3, Office Compatibility Pack Service Pack 3.

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

MS14-034

Impacts
?
ACE 
[?]

DoS 
[?]
Related products
Microsoft Word
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
CVE-IDS
?

CVE-2014-2778

Microsoft official advisories
MS14-034
KB list

2880513
2969261
2880515