Microsoft Project Memory Validation Vulnerability( 09 April 2008 )
A remote code execution vulnerability exists in the way Microsoft Project handles specially crafted Project files. An attacker could exploit the vulnerability by sending a malformed file which could be included as an e-mail attachment, or hosted on a specially crafted or compromised Web site.
- Remote Code Execution
System / Technologies affected
- Microsoft Project 2000
- Microsoft Project 2002
- Microsoft Project 2003
Before installation of the software, please visit the software manufacturer web-site for more details.
Download locations for this patch
- Microsoft Project 2000 Service Release 1
- Microsoft Project 2002 Service Pack 1
- Microsoft Project 2003 Service Pack 2