VRT Advisories


VRT Tool 2007-01-29

Sourcefire VRT Tool Update

Date: 2007-01-29

Synopsis:

The Sourcefire VRT has updated the OfficeCat tool to include coverage for recently announced vulnerabilities in Microsoft Word.

Details:

OfficeCat Update:
The OfficeCat tool has been updated to account for recently announced vulnerabilites in Microsoft Word. These vulnerabilities may be exploited by an attacker and could lead to the execution of arbitrary code on an affected system.

Microsoft is currently investigating reports of a new vulnerability in Word that may allow an attacker to execute code of their choosing on an affected system. Further details are available here.

The OfficeCat tool is able to process Word, Excel and PowerPoint files and will return the appropriate reference information should possible exploit conditions be present in the document.

OfficeCat Tool Download:

Download zip archive here.

Usage Instructions:

  1. Unzip the archive
  2. Open a command shell
  3. Execute the tool executable with a document name for checking

About the VRT:

The Sourcefire VRT is a group of leading edge intrusion detection and prevention experts working to proactively discover, assess and respond to the latest trends in hacking activity, intrusion attempts and vulnerabilities.

About Sourcefire

Sourcefire, Inc., the world leader in intrusion prevention, is transforming the way organizations manage and minimize network security risks with its 3D Approach - Discover, Determine, Defend - to securing real networks in real-time. For more information about Sourcefire, please visit www.sourcefire.com.