| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS14-020 | Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (2950145) | Microsoft Office | Important | 09-04-2014 |
Technical Information
Brief overview of the risk:
The vulnerability could allow remote code execution if a user opens a specially crafted file in an affected version of Microsoft Publisher.
Detailed Information on the risk:
A remote code execution vulnerability exists in the way that affected versions of Microsoft Publisher parses specially crafted files. An attacker who successfully exploited this vulnerability could run arbitrary code as the current user.
Further information on this exploit is available at : MS14-020
Affected Software
Microsoft Office 2003 Service Pack 3Microsoft Office 2007 Service Pack 3