Home › News › Industry News

Buffer Overrun in WordPerfect Converter

On September 3, 2003, 2:38 PM

Affected Software:
Microsoft Office 97, 2000 & XP
Microsoft Word 98 (J)
Microsoft FrontPage 2000 & 2002
Microsoft Publisher 2000 & 2002
Microsoft Works Suite 2001, 2000 & 2002

There is a flaw in the way that the Microsoft WordPerfect converter handles Corel WordPerfect documents. A security vulnerability results because the converter does not correctly validate certain parameters when it opens a WordPerfect document, which results in an unchecked buffer. As a result, an attacker could craft a malicious WordPerfect document that could allow code of their choice to be executed if an application that used the WordPerfect converter opened the document. Microsoft Word and Microsoft PowerPoint (which are part of the Office suite), FrontPage (which is available as part of the Office suite or separately), Publisher, & Microsoft Works Suite can all use the Microsoft Office WordPerfect converter.

The vulnerability could only be exploited by an attacker who persuaded a user to open a malicious WordPerfect document—there is no way for an attacker to force a malicious document to be opened or to trigger an attack automatically by sending an e-mail message.

Patch availability

No tags on this story

Next Article: Flaw in Word Could Enable Macros to Run

TechSpot on:

Most Popular

Trending

Featured

Featured on Keyboards

Downloads and Drivers

MessageMe for Android 1.0.11

More Downloads

Latest Discussion

Need help with upgrading 11 replies on Processors and Motherboards

Graphics Card Question 8 replies on Audio and Video

Monitor - No display when i put my HD6670 into motherboard 5 replies on Audio and Video

How did my Windows key become disabled? 15 replies on Other Hardware

Screen saver stop working after installing Norton 12 replies on Software Apps

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.

TechSpot

Welcome to TechSpot

Home › News › Industry News

Buffer Overrun in WordPerfect Converter

Next Article: Flaw in Word Could Enable Macros to Run

Post a new comment

TechSpot on:

Most Popular

GeForce GTX 780 Review: The Titan Descendant

OCZ Vertex 450 Review: Vector-like Performance For Less

Xbox One: Entertainment hub first, gaming console second - but can it disrupt TV?

Metro: Last Light Tested, Benchmarked

Microsoft officially announces Xbox One: here's what we know so far

OCZ Vertex 450 SSD Review

Nvidia GeForce GTX 780 Review

Xbox One: Entertainment Hub First, Gaming Console Second -- But Could It Disrupt TV?

Metro: Last Light Performance, Benchmarked

Building a Thin Mini-ITX PC: Small and Silent Performance

Featured on Keyboards

79 Metadot Das Keyboard Professional

87 Logitech Illuminated Keyboard

84 Razer BlackWidow Ultimate

88 Corsair Vengeance K90

82 Apple Wireless Keyboard MB167

Downloads and Drivers

Latest Discussion

Subscribe to TechSpot

Featured Tech Content - Inside TechSpot

	Social Login & Guest Posting Post as anonymous user			TechSpot Members Login here or sign up for free, it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.