hxds.dll in Microsoft Office 2007 SP3 and 2010 SP1 and SP2 does not implement the ASLR protection mechanism, which makes it easier for remote attackers to execute arbitrary code via a crafted COM component on a web site that is visited with Internet Explorer, as exploited in the wild in December 2013, aka HXDS ASLR Vulnerability.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Office | Microsoft | 2007-sp3 (including) | 2007-sp3 (including) |
| Office | Microsoft | 2010-sp1 (including) | 2010-sp1 (including) |
| Office | Microsoft | 2010-sp2 (including) | 2010-sp2 (including) |
References
- http://blogs.technet.com/b/srd/archive/2013/12/09/ms13-106-another-aslr-bypass-is-gone.aspx
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-106
- http://blogs.technet.com/b/srd/archive/2013/12/09/ms13-106-another-aslr-bypass-is-gone.aspx
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-106