9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.592 Medium
EPSS
Percentile
97.7%
Added: 02/22/2008
CVE: CVE-2008-0105
BID: 27658
OSVDB: 41458
The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files.
A buffer overflow vulnerability in the Microsoft Works File Converter allows arbitrary command execution when a user opens a **.wps**
file with a specially crafted index table.
Apply the update referenced in Microsoft Security Bulletin 08-011.
<http://www.microsoft.com/technet/security/bulletin/ms08-011.mspx>
Exploit works on Microsoft Word 2003 SP3 and requires a user to open the exploit file.
Windows