Check: 2014-A-0050
windows 7 iavm:
2014-A-0050
(in version v1 r32)
Title
Microsoft Publisher Remote Code Execution Vulnerability (Cat II impact)
Discussion
Microsoft has released a security advisory addressing a vulnerability in Microsoft Publisher. The Publisher converter is used by Microsoft Publisher to open Publisher files created in versions earlier than Microsoft Publisher 2007. To exploit this vulnerability, a remote attacker would create a malicious Publisher file and entice a user to open the file by hosting it on a website or sending via email. If successfully exploited, this vulnerability would allow a remote attacker to execute arbitrary code and compromise the affected system.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-48679
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |