Summary
This host is missing an important security
update according to Microsoft Bulletin MS14-069.
Impact
Successful exploitation will allow remote
attackers to execute the arbitrary code, cause memory corruption and compromise the system.
Impact Level: System
Solution
Run Windows Update and update the
listed hotfixes or download and update mentioned hotfixes in the advisory from the below link,
https://technet.microsoft.com/library/security/MS14-069
Insight
The flaws are due to errors when parsing
files.
Affected
Microsoft Office Word Viewer 2007 SP3 and prior.
Detection
Get the vulnerable file version and
check appropriate patch is applied or not.
References
Severity
Classification
-
CVE CVE-2014-6333, CVE-2014-6334, CVE-2014-6335 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Internet Information Services (IIS) FTP Service Remote Code Execution Vulnerability (2489256)
- Consent User Interface Privilege Escalation Vulnerability (2442962)
- Microsoft Excel Remote Code Execution Vulnerabilities (968557)
- Microsoft Comctl32 Integer Overflow Vulnerability (2864058)
- Microsoft .NET Common Language Runtime Remote Code Execution Vulnerability (2265906)