Update Protection against Microsoft Office Malformed PICT Filter Vulnerability (MS08-044)
| Check Point Reference: | CPAI-2008-114 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Microsoft Security Bulletin MS08-044 | |
| Industry Reference(s): | CVE-2008-3018 | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? Microsoft Office 2000 SP3 Microsoft Project 2002 SP1 Microsoft Office XP SP3 Microsoft Office 2003 SP2 Microsoft Office Converter Pack Microsoft Works 8 | ||
| Vulnerability Description A remote code execution vulnerability was reported in the way Microsoft Office handles PICT files. PICT is a graphics file format that allows the interchange of graphics (both bitmapped and vector), and some limited text support, between Mac applications. A remote attacker could exploit this issue via a malformed PICT file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS08-044 |
|
|
Vulnerability Details The vulnerability is due to a memory corruption error when a malformed PICT file is opened by any of the affected Microsoft Office applications. A remote attacker could trigger this flaw by convincing a victim to open a specially crafted PICT file. Successful exploitation of this issue may allow the attacker to take complete control of the affected system. |
Protection Overview
By enabling this protection, SmartDefense will detect and block the transferring of malformed PICT files over HTTP.
In order for the protection to be activated, update your VPN-1/InterSpect product to the latest SmartDefense update. For information on how to update SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.