Lucene search
K
MicrosoftOffice Word

14 matches found

CVE
CVE
added 2009/06/10 5:37 p.m.193 views

CVE-2009-0565

CVE-2009-0565 is a Word buffer-overflow vulnerability caused by a malformed record (Sprm) in Word documents, leading to remote code execution. Affected products include Microsoft Word 2000 SP3, 2002 SP3, 2007 SP1/SP2, Word for Mac 2004/2008, Open XML File Format Converter for Mac, and Office Comp...

9.3CVSS7.8AI score0.40503EPSS
CVE
CVE
added 2009/11/11 7:0 p.m.90 views

CVE-2009-3135

Microsoft Word Remote Code Execution (CVE-2009-3135) affects Word 2002 SP3, Word 2003 SP3, Word 2004/2008 for Mac, Open XML File Format Converter for Mac, Word Viewer 2003 SP3, and Word Viewer. The vulnerability is a stack-based buffer overflow in Word’s File Information Block (FIB) parsing, whic...

9.3CVSS7.8AI score0.35792EPSS
CVE
CVE
added 2009/04/15 3:49 a.m.86 views

CVE-2009-0087

CVE-2009-0087 is a remote-code-execution vulnerability in WordPad’s Word 6/text converters and Office Word’s Word 6 converter, caused by memory corruption while parsing crafted Word 6 documents. Affected products include WordPad Word 6 converter on Windows 2000 SP4, XP SP2/SP3, Server 2003; Word ...

9.3CVSS7.5AI score0.25892EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.83 views

CVE-2008-4025

CVE-2008-4025 corresponds to a set of Word/RTF parsing vulnerabilities (word memory/RTF object parsing) in Office products where an integer overflow during RTF/Polyline point processing can trigger a heap-based buffer overflow and remote code execution. Affected software includes Word 2000 SP3, 2...

9.3CVSS7.7AI score0.32943EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.80 views

CVE-2008-4031

CVE-2008-4031 is a remote code execution vulnerability in Microsoft Office Word/Word components caused by a memory corruption during parsing of Rich Text Format (RTF) content. The issue can be triggered when a user opens a specially crafted RTF file or previews a malicious RTF email, potentially ...

9.3CVSS7.4AI score0.2339EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.77 views

CVE-2008-4024

CVE-2008-4024 affects Microsoft Word 2000 SP3, Word 2002 SP3, and Word 2004 for Mac. A remote code execution vulnerability arises when processing a specially crafted Word file containing lcbPlcfBkfSdt in the File Information Block (FIB); this can bypass an initialization step and trigger an arbit...

9.3CVSS7.2AI score0.28876EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.76 views

CVE-2008-4028

CVE-2008-4028 is described in connected advisories as a Word RTF Object Parsing memory corruption/heap overflow vulnerability. It affects Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, 2007 Gold/SP1; Word Viewer 2003; Office Compatibility Pack for Word/Excel/PowerPoint 2007 File Formats Gold...

9.3CVSS7.5AI score0.38057EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.76 views

CVE-2008-4837

CVE-2008-4837 is a Word memory corruption vulnerability (Word Memory Corruption Vulnerability) affecting Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold/SP1, Word Viewer 2003, and related Office components. The issue arises from a stack/memory corruption when processing a crafted Word document w...

9.3CVSS7.7AI score0.37422EPSS
CVE
CVE
added 2009/04/15 3:49 a.m.76 views

CVE-2009-0088

CVE-2009-0088 describes a remote code execution vulnerability in the WordPerfect 6.x Converter (WPFT632.CNV) used by Word 2000 SP3 and the Office Converter Pack. The issue arises when the converter fails to properly validate the length of an input string, enabling a crafted WordPerfect 6.x docume...

9.3CVSS7.5AI score0.28446EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.74 views

CVE-2008-4027

CVE-2008-4027 is a remote code execution vulnerability in Microsoft Word/Office applications caused by parsing malformed Rich Text Format (RTF) files. The flaw arises from mishandling consecutive Drawing Object ("\do") tags, leading to memory corruption and potential arbitrary code execution. Aff...

9.3CVSS7.3AI score0.33906EPSS
CVE
CVE
added 2009/12/09 6:0 p.m.74 views

CVE-2009-2506

The CVE-2009-2506 issue is a memory corruption/heap overflow vulnerability in WordPad and Office text converters when parsing the DocumentSummaryInformation stream of a specially crafted Word 97 DOC file. A remote attacker could execute arbitrary code with the privileges of the logged-on user by ...

9.3CVSS7.6AI score0.31232EPSS
CVE
CVE
added 2008/07/09 10:0 p.m.67 views

CVE-2008-2244

CVE-2008-2244 is a Word record parsing vulnerability in Word 2002/2003 (SP3/SP2) where specially crafted Word files trigger a memory corruption leading to remote code execution. The root cause is a memory handling error when processing records in Word documents, enabling an attacker to run arbitr...

9.3CVSS7.3AI score0.32139EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.66 views

CVE-2008-4026

CVE-2008-4026 is a remote-code-execution vulnerability in Microsoft Word handling crafted Word files that contain a malformed value, triggering memory corruption. Affected products include Word 2000 SP3, 2002 SP3, 2003 SP3, 2007 (Gold and SP1), Word Viewer 2003 SP3, Office Compatibility Pack for ...

9.3CVSS7.4AI score0.2339EPSS
CVE
CVE
added 2008/12/10 1:33 p.m.58 views

CVE-2008-4030

CVE-2008-4030 corresponds to a memory-corruption remote code execution issue in Microsoft Office Word (various versions) triggered by crafted control words in Rich Text Format (RTF) files or in RTF emails. Connected advisories attribute the vulnerability to a memory calculation error in Word that...

9.3CVSS7.3AI score0.2339EPSS