It is an important vulnerability in Brazilian Portuguese Grammar Checker on computers with Office 2003, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user.

Other

MS07-001 is not categorized as virus, worm, Trojan or backdoor. It is an important vulnerability in Brazilian Portuguese Grammar Checker in Office 2003, which allows arbitrary code to be remotely executed in the vulnerable computer.

The affected versions are:

• Office 2003: the Brazilian Portuguese version.
  - Word 2003.
  - Excel 2003.
  - Outlook 2003.
  - Access 2003.
  - OneNote 2003.
  - PowerPoint 2003.
  - Publisher 2003.
  - InfoPath 2003.
  - FrontPage 2003.
  - Visio 2003.
  - Visio Enterprise Architects 2003.
• Office Multilingual User Interface 2003.
• Project Multilingual User Interface 2003.
• Visio Multlingual User Interface 2003.
• Office Proofing Tools 2003.

If exploited successfully, MS07-001 allows hackers to gain remote control of the affected computer with the same privileges as the logged on user. If this user had administrator rights, the hacker could take complete control of the system: create, modify or delete files, install programs, create new user accounts, etc.

This vulnerability is exploited by hosting a malicious Office file in a website and entincing users into accessing it, or by sending a specially crafted file via email to a vulnerable computer.

If you have any of the components mentioned above, it is recommended to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.