Lucene search

PRIOn knowledge basePRION:CVE-2008-0109

HistoryFeb 12, 2008 - 11:00 p.m.

Memory corruption

2008-02-1223:00:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.542 Medium

EPSS

Percentile

97.6%

JSON

Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Office Word Viewer 2003 allows remote attackers to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file, which triggers length calculation errors and memory corruption.

CPENameOperatorVersion
officeeqxp sp3
officeeq2003 sp2
officeeq2003
officeeq2000 sp3

Name	Operator	Version
office	eq	xp sp3
office	eq	2003 sp2
office	eq	2003
office	eq	2000 sp3

References

secunia.com/advisories/28901

www.kb.cert.org/vuls/id/692417

www.securityfocus.com/archive/1/488071/100/0/threaded

www.securityfocus.com/bid/27656

www.securitytracker.com/id?1019374

www.us-cert.gov/cas/techalerts/TA08-043C.html

www.vupen.com/english/advisories/2008/0511/references

docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-009

marc.info/?l=bugtraq&m=120361015026386&w=2

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5073

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.542 Medium

EPSS

Percentile

97.6%

JSON

Related for PRION:CVE-2008-0109