Microsoft Office nformation Disclosure Vulnerability (957699)

Summary
This host is missing critical security update according to Microsoft Bulletin MS08-056.
Impact
Successful exploitation could allow documents incorrectly rendered in the web browser, leading to cross site scripting attack. Impact Level: Application
Solution
Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link. http://www.microsoft.com/technet/security/bulletin/ms08-056.mspx
Insight
The flaw exists due to the way that Office processes documents using the CDO Protocol (cdo:) and the Content-Disposition Attachment header.
Affected
Microsoft Office XP Service Pack 3 on Windows (All).
References