CVE-2008-4024

2008-12-10T09:00:00
ID CVE-2008-4024
Type cve
Reporter NVD
Modified 2017-09-28T21:31:56

Description

Microsoft Office Word 2000 SP3 and 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a Word document with a crafted lcbPlcfBkfSdt field in the File Information Block (FIB), which bypasses an initialization step and triggers an "arbitrary free," aka "Word Memory Corruption Vulnerability."