Microsoft Office Word Heap-Based Buffer Overflow Vulnerability Allowing Local Code Execution

A heap-based buffer overflow vulnerability has been identified in Microsoft Office Word. This vulnerability allows an unauthorized attacker to execute code locally. It can be exploited by crafting a malicious RTF file, which, when opened by a user or rendered in the preview pane, could execute arbitrary code in the user's context.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution on the affected system.

Reproduction

To reproduce this vulnerability, create a malicious RTF file that exploits the heap-based buffer overflow. Once the file is crafted, it can be opened in Microsoft Office Word or previewed in the application's preview pane, triggering the vulnerability by executing the embedded code.

Remediation

Security updates for this vulnerability are available for Microsoft 365 Apps for Enterprise, both 32-bit and 64-bit versions. Users should ensure they have the latest update installed. For more information, see the Office 365 ProPlus Security Updates Release Notes.