Lucene search

PRIOn knowledge basePRION:CVE-2007-0035

HistoryMay 08, 2007 - 10:19 p.m.

Buffer overflow

2007-05-0822:19:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.817 High

EPSS

Percentile

98.3%

JSON

Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, 2004 for Mac, and Works Suite 2004, 2005, and 2006 does not properly handle data in a certain array, which allows user-assisted remote attackers to execute arbitrary code, aka the “Word Array Overflow Vulnerability.”

CPENameOperatorVersion
officeeq2004 mac
officeeqxp sp3
officeeq2003 sp2
officeeq2003
officeeq2000 sp3
workseq2006
workseq2005
workseq2004

Name	Operator	Version
office	eq	2004 mac
office	eq	xp sp3
office	eq	2003 sp2
office	eq	2003
office	eq	2000 sp3
works	eq	2006
works	eq	2005
works	eq	2004

References

www.kb.cert.org/vuls/id/260777

www.osvdb.org/34387

www.securityfocus.com/archive/1/468871/100/200/threaded

www.securityfocus.com/bid/23804

www.securitytracker.com/id?1018013

www.us-cert.gov/cas/techalerts/TA07-128A.html

www.vupen.com/english/advisories/2007/1709

docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-024

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1737

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.817 High

EPSS

Percentile

98.3%

JSON

Related for PRION:CVE-2007-0035