CVE-2012-0183

2012-05-0900:55:01

[email protected]

web.nvd.nist.gov

113

microsoft word

rtf

vulnerability

cve-2012-0183

nvd

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.941 High

EPSS

Percentile

99.2%

JSON

Microsoft Word 2003 SP3 and 2007 SP2 and SP3, Office 2008 and 2011 for Mac, and Office Compatibility Pack SP2 and SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data, aka “RTF Mismatch Vulnerability.”

Affected configurations

NVD

Node

microsoftofficeMatch2008mac

microsoftoffice_compatibility_packsp2

microsoftoffice_compatibility_packsp3

microsoftwordMatch2003sp3

microsoftwordMatch2007sp2

microsoftwordMatch2007sp3

CPENameOperatorVersion
microsoft:officemicrosoft officeeq2008
microsoft:office_compatibility_packmicrosoft office compatibility packeq*
microsoft:wordmicrosoft wordeq2003
microsoft:wordmicrosoft wordeq2007

CPE	Name	Operator	Version
microsoft:office	microsoft office	eq	2008
microsoft:office_compatibility_pack	microsoft office compatibility pack	eq	*
microsoft:word	microsoft word	eq	2003
microsoft:word	microsoft word	eq	2007