<< Back
CVE Number Vulnerability Product Severity Date
MS14-020 Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (2950145) Microsoft Office Important 09-04-2014

Technical Information

Brief overview of the risk:
The vulnerability could allow remote code execution if a user opens a specially crafted file in an affected version of Microsoft Publisher.
Detailed Information on the risk:

A remote code execution vulnerability exists in the way that affected versions of Microsoft Publisher parses specially crafted files. An attacker who successfully exploited this vulnerability could run arbitrary code as the current user.


Further information on this exploit is available at : MS14-020

Affected Software

Microsoft Office 2003 Service Pack 3
Microsoft Office 2007 Service Pack 3