MS 07-013: Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118)

Products | Software | Services | Solutions | Support | Supplies

MS 07-013: Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118)

A remote code execution vulnerability exists in the RichEdit components
provided with Microsoft Windows and Microsoft Office. An attacker could exploit
this vulnerability when a user interacts with a malformed embedded OLE object
within a Rich Text Format (RTF) file.
If a user is logged on with administrative user rights, an attacker who
successfully exploited this vulnerability could take complete control of an
affected system. An attacker could then install programs; view, change, or
delete data; or create new accounts with full user rights. Users whose accounts
are configured to have fewer user rights on the system could be less affected
than users who operate with administrative user rights.

Océ systems	Vulnerability / Status	Recommended action
Océ TDS300 1.x Océ TDS320 1.x Océ TDS400 2.x Océ TDS450 1.x Océ TDS600 4.x Océ TDS700 1.x Océ TDS800 2.x Océ TDS860 1.x Océ TCS300 1.x Océ TCS400 2.x Océ TCS500 1.x	Not vulnerable	None
Océ DPS400 Océ VP2105	Not vulnerable	None
Océ VP2090 Océ VP21x0 Océ VP3xx0	Not vulnerable	None
Océ 900C Océ 950C	Not vulnerable	None
Océ 910C Océ 960C Océ 970C Océ 1000C Océ 1070C	This product may be affected by this vulnerability	Automatically updated
Océ IP-901 Océ IC-302 Océ IC-303	This product may be affected by this vulnerability	Automatically updated

Océ Corporate Site

Home \| Products \| Software \| Services \| Solutions \| Support \| Supplies

Privacy policy \| Terms of use \| Other Océ websites »

	© 2008 Océ

	All rights reserved