Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2524

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-2524
Last Modified 02 Nov 2013 11:24:18
Published 14 Aug 2012 09:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-2524

Summary

Microsoft Office 2007 SP2 and SP3 and 2010 SP1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Computer Graphics Metafile (CGM) file, aka "CGM File Format Memory Corruption Vulnerability."

Vulnerable Systems

Application

  • Microsoft Office 2007

  • Microsoft Office 2010


References

MS - MS12-057

CERT - TA12-227A

Related Patches

MS12-057 Security Update for Microsoft Office 2010 32-Bit Edition (KB2589322)

MS12-057 Security Update for Microsoft Office 2007 suites (KB2596754)

MS12-057 Security Update for Microsoft Office 2010 32-Bit Edition (KB2553260)

MS12-057 Security Update for Microsoft Office 2007 suites (KB2596615)

MS12-057 Security Update for Microsoft Office 2010 64-Bit Edition (KB2553260)

MS12-057 Security Update for Microsoft Office 2010 64-Bit Edition (KB2589322)

MS12-057 Security Update for Microsoft Office 2010 32-Bit Edition (KB2687501) (See Notes)

MS12-057 Security Update for Microsoft Office 2010 32-Bit Edition (KB2687510)

MS12-057 Security Update for Microsoft Office 2010 64-Bit Edition (KB2687501)

MS12-057 Security Update for Microsoft Office 2010 64-Bit Edition (KB2687510)


Last Updated: 27 May 2016 10:51:42