Vulnerabilities > CVE-2007-1117 - Remote Code Execution vulnerability in Microsoft Publisher 2007

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

microsoft

critical

NVD

Published: 2007-02-27

Updated: 2008-11-15

Summary

Unspecified vulnerability in Publisher 2007 in Microsoft Office 2007 allows remote attackers to execute arbitrary code via unspecified vectors, related to a "file format vulnerability." NOTE: this information is based upon a vague pre-advisory with no actionable information. However, the advisory is from a reliable source.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Publisher 2007	1

References

http://news.com.com/2100-1002_3-6161835.html
http://osvdb.org/45264
http://research.eeye.com/html/advisories/upcoming/20070216.html
http://www.securityfocus.com/bid/22702