Microsoft Office Word 2007 Multiple Vulnerabilities

ring04h

团队执行官

Rank: 8 Rank: 8

E.S.T核心成员社区主管

帖子: 3921
精华: 128
积分: 209639
阅读权限: 200
性别: 男
在线时间: 1092 小时
注册时间: 2007-10-23
最后登录: 2008-7-9

资料收集奖运营支持奖

发短消息
加为好友
当前离线

楼主大中小发表于 2007-4-15 00:53 只看该作者

Microsoft Office Word 2007 Multiple Vulnerabilities

复制内容到剪贴板

代码:

# Mati Aharoni



# muts [.@.] offensive-security.com



# [url]http://www.offensive-security.com[/url]



 



 



My 7 line python fuzzer found several file format bugs in 3 hours. Quite alarming.



No deep analysis was done, I leave that to the community.



These are some of the results:



 



file789-1.doc - Unspecified Overflow in word 2007 - Crash in wwlib.dll . Code execution is not trivial.



file798-1.doc . Word 2007 CPU exhaustion DOS - CPU shoots up to 100 %.



file613-1.doc - Word 2007 CPU exhaustion DOS + ding - CPU shoots up to 100 %, and windows goes .ding!.



 



These files can be found at [url]http://www.offensive-security.com/0day/0day.tar.gz[/url]





Be safe,

 



Muts

附件

0day.tar.gz (11 KB): 2007-4-15 00:53, 下载次数: 53

TOP

‹‹ 上一主题 | 下一主题 ››

邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » Microsoft Office Word 2007 Multiple Vulnerabilities