Microsoft Office 2000 SP3, XP SP3, and 2003 SP2; Office Converter Pack; and Works 8 do not properly parse the length of a PICT file, which allows remote malicious users to execute arbitrary code via a crafted PICT file with an invalid bits_per_pixel field, aka the "PICT Filter Parsing Vulnerability," a different vulnerability than CVE-2008-3018.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft works 8.0 |
||
microsoft office xp |
||
microsoft office converter pack |
||
microsoft office 2000 |
||
microsoft office 2003 |