Vulnerability in Microsoft Publisher
CVE-2014-1759
pubconv.dll in Microsoft Publisher 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (incorrect pointer dereference and application crash) via a crafted .pub file, aka "Arbitrary Pointer D…
EPSS: 0.215 (95.8th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Publisher — versions 2003, 2007
- N/a — versions n/a
References
- MS14-020 (x_refsource_MS, vendor-advisory)