Microsoft Windows Knowledge Base Article 950183 update not installed (WinMs08kb950183Update)

Vuln ID: 41448
Risk Level: Low risk vulnerability  Low WinMs08kb950183Update
Platforms: Microsoft Project: 2003 SP2, Microsoft Project: 2000 SR1, Microsoft Project: 2002 SP1
Description:

Microsoft Windows Knowledge Base Article 950183 update is not installed on the system, which could allow a remote attacker to exploit the following vulnerability:

Microsoft Project could allow a remote attacker to execute arbitrary code on the system, caused by improper validation of memory resource allocation when opening Project files. By persuading a victim to open a malicious Project file, a remote attacker could exploit this vulnerability to corrupt memory and execute arbitrary code on the system or cause the application to crash.
Remedy:

Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS08-018. See References.
False Positives:
False Negatives:
Required Permission: Windows login
Additional Information:

References:

Microsoft Security Bulletin MS08-018
Vulnerability in Microsoft Project Could Allow Remote Code Execution (950183)
http://www.microsoft.com/technet/security/Bulletin/MS08-018.mspx

IBM Internet Security Systems X-Force Database
Microsoft Project file memory allocation code execution
http://xforce.iss.net/xforce/xfdb/41447

ISS X-Force
Microsoft Windows Knowledge Base Article 950183 update not installed
http://www.iss.net/security_center/static/41448.php

CVE CVE-2008-1088
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1088
X-Force Logo
Know Your Risks		 Mitre.org CVE Logo
Common Vulnerabilties & Exposures