6 matches found
CVE-2008-0109
CVE-2008-0109 affects Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Word Viewer 2003. The root cause is a memory corruption in parsing certain fields in the File Information Block (FIB) of Word documents, triggered by crafted content, enabling remote code execution. Impact is fu...
CVE-2026-26133
CVE-2026-26133 involves an AI command injection vulnerability in Microsoft 365 Copilot that can lead to unauthorized disclosure of information over a network. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N) indicates a network-accessible issue with no privileges required but user intera...
CVE-2002-1143
Affected software: Microsoft Word and Microsoft Excel (Office suite). Vulnerability: information disclosure via field codes in Word (INCLUDETEXT) and external updates in Excel, allowing remote attackers to insert and exfiltrate local data when a document is returned to the attacker. Root cause: m...
CVE-2005-1683
CVE-2005-1683 describes a buffer overflow in Microsoft Word components: winword.exe on Windows (versions up to 10.2627.6714 and earlier) and Word for Macintosh prior to SP3 for Word 2002, exploitable via a crafted .mcw file. This leads to remote denial of service and, possibly, arbitrary code exe...
CVE-2026-42832
This CVE (CVE-2026-42832) concerns Microsoft Office and is rooted in improper access control that enables a local attacker to spoof. Affected software is Microsoft Office; the vulnerability is described as allowing local spoofing with high impact to confidentiality and integrity (per CVSS 3.1 met...
CVE-2026-41101
Technical details about CVE-2026-41101 are not publicly available in the provided documents. Monitor for updates from official sources; no specifics on affected products, versions, root cause, or remediation are included in the supplied material.