4 matches found
MS08-011: Vulnerabilities in Microsoft Works File Converter Could Allow Remote Code Execution (947081)
The remote host is running a version of Microsoft Office Works Converter that may allow arbitrary code to be run. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have him open it. Then a bug in the wps header handler would result in code execution. C...
iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Heap Overflow Vulnerability
iDefense Security Advisory 02.12.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 12, 2008 I. BACKGROUND Microsoft Works is a word processor created by Microsoft in the 1980s. Microsoft Office, a widely use productivity suite, is distributed with converters for various versions of th...
CVE-2007-0216
CVE-2007-0216 is a remote code execution vulnerability in the Microsoft Works File Converter. It stems from improper validation of .wps section length headers in wkcvqd01.dll. A crafted .wps file could allow an attacker to take control of the affected system. Affected products include Microsoft O...
Microsoft Works WPS File Field Length Handling Stack Overflow (MS08-011; CVE-2007-0216; CVE-2008-0108)
Microsoft Works is home productivity software suite with fewer features than the Microsoft Office suite. The Microsoft Works Converter allows the user to open, edit, and save files in the Microsoft Works file format. CVE-2007-0216: The vulnerability is due to an error in the Microsoft Works...