Microsoft Office Picture Manager Memory Corruption Denial of Service Vulnerability

Summary

Microsoft Office Picture Manager is prone to a remote memory-corruption vulnerability.

Credit:

The information has been provided by coolkaveh< /B>.


Details

Vulnerable Systems:
 * Microsoft Office Picture Manager 2010

Microsoft Office Picture Manager could allow a remote attacker to execute arbitrary code on the system, caused by an access violation error when processing malicious files. By persuading a victim to open a specially-crafted .poc file, an attacker could exploit this vulnerability to execute arbitrary code with privileges of the victim.

Exploit:
The following exploit is available:
http://downloads.securityfocus.com/vulnerabilities/exploits/56239.pl

Disclosure Timeline:
Published: October 25 2012

Categories: Windows