Word Security Vulnerabilities and Issues — Word CVE List

Lucene search

MicrosoftWord

5 matches found

CVE•added 2005/02/08 5:0 a.m.•69 views

CVE-2004-0848

Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames.

7.5CVSS7.8AI score0.42122EPSS

CVE•added 2005/07/12 4:0 a.m.•51 views

CVE-2005-0564

Stack-based buffer overflow in Microsoft Word 2000 and Word 2002, and Microsoft Works Suites 2000 through 2004, might allow remote attackers to execute arbitrary code via a .doc file with long font information.

7.5CVSS7.9AI score0.46092EPSS

CVE•added 2005/05/25 4:0 a.m.•46 views

CVE-2005-1683

Buffer overflow in winword.exe 10.2627.6714 and earlier in Microsoft Word for the Macintosh, before SP3 for Word 2002, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted mcw file.

2.6CVSS8.2AI score0.1513EPSS

CVE•added 2005/05/02 4:0 a.m.•45 views

CVE-2005-0558

Buffer overflow in Microsoft Word 2000, Word 2002, and Word 2003 allows remote attackers to execute arbitrary code via a crafted document.

5.1CVSS7.8AI score0.26184EPSS

CVE•added 2005/02/09 5:0 a.m.•39 views

CVE-2004-0963

Buffer overflow in Microsoft Word 2002 (10.6612.6714) SP3, and possibly other versions, allows remote attackers to cause a denial of service (application exception) and possibly execute arbitrary code in winword.exe via certain unexpected values in a .doc file, including (1) an offset that triggers...

10CVSS7.9AI score0.4414EPSS