This module exploits a vulnerability in Microsoft Office (.WPS files). The vulnerability is caused due to boundary errors within the processing of WPS files. This can be exploited to cause a stack-based buffer overflow when a specially crafted file is opened. This update adds Windows 2000 and Windows 2003 as Supported Systems and fixes a small bug in the function that generate the files.
Thursday, April 3, 2008 - 19:00