Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Office_word
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 14 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2008-12-10 | CVE-2008-4026 | Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via a crafted Word document that contains a malformed value, which triggers memory corruption, aka "Word Memory Corruption Vulnerability." | Office, Office_compatibility_pack_for_word_excel_ppt_2007, Office_outlook, Office_word, Office_word_viewer, Open_xml_file_format_converter, Works | N/A | ||
| 2008-12-10 | CVE-2008-4025 | Integer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via (1) an RTF file or (2) a rich text e-mail message containing an invalid number of points for a polyline or polygon, which... | Office, Office_compatibility_pack_for_word_excel_ppt_2007, Office_outlook, Office_word, Office_word_viewer, Open_xml_file_format_converter, Works | N/A | ||
| 2008-12-10 | CVE-2008-4024 | Microsoft Office Word 2000 SP3 and 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a Word document with a crafted lcbPlcfBkfSdt field in the File Information Block (FIB), which bypasses an initialization step and triggers an "arbitrary free," aka "Word Memory Corruption Vulnerability." | Office, Office_compatibility_pack_for_word_excel_ppt_2007, Office_outlook, Office_word, Office_word_viewer, Open_xml_file_format_converter, Works | N/A | ||
| 2008-07-09 | CVE-2008-2244 | Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a .doc file that contains malformed data, as exploited in the wild in July 2008, and as demonstrated by attachement.doc. | Office_word | N/A |