CVE-2010-1903

2010-08-1118:47:00

CWE-94

[email protected]

web.nvd.nist.gov

microsoft office

word

remote code execution

vulnerability

cve-2010-1903

nvd

7.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.934 High

EPSS

Percentile

99.1%

JSON

Microsoft Office Word 2002 SP3 and 2003 SP3, and Office Word Viewer, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed record in a Word file, aka “Word HTML Linked Objects Memory Corruption Vulnerability.”

CPENameOperatorVersion
microsoft:wordmicrosoft wordeq2002
microsoft:wordmicrosoft wordeq2003
microsoft:office_word_viewermicrosoft office word viewereq*