Memory corruption

2008-06-1819:41:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

High

0.028 Low

EPSS

Percentile

90.7%

JSON

Microsoft Word 2000 9.0.2812 and 2003 11.8106.8172 does not properly handle unordered lists, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .doc file. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
wordeq2003 sp1
wordeq2000
wordeq2000 sr1a
wordeq2003 sp3
wordeq2003
wordeq2000 sp3
wordeq2003 sp2
wordeq2000 sp2
wordeq2000 sr1

Name	Operator	Version
word	eq	2003 sp1
word	eq	2000
word	eq	2000 sr1a
word	eq	2003 sp3
word	eq	2003
word	eq	2000 sp3
word	eq	2003 sp2
word	eq	2000 sp2
word	eq	2000 sr1

References

www.nullcode.com.ar/ncs/crash/video.htm

www.nullcode.com.ar/ncs/crash/video2.htm

www.securityfocus.com/bid/29769

www.securityfocus.com/data/vulnerabilities/exploits/crash-word-1.doc

www.securityfocus.com/data/vulnerabilities/exploits/crash-word-2.doc

www.securityfocus.com/data/vulnerabilities/exploits/crash-word-3.doc

www.securityfocus.com/data/vulnerabilities/exploits/crash-word-4.doc

exchange.xforce.ibmcloud.com/vulnerabilities/43155