CVE-2007-1202 in Wordinfo

Summary

Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, 2004 for Mac, and Works Suite 2004, 2005, and 2006 does not properly parse certain rich text "property strings of certain control words," which allows user-assisted remote attackers to trigger heap corruption and execute arbitrary code, aka the "Word RTF Parsing Vulnerability."

Once again VulDB remains the best source for vulnerability data.

Reservation

03/02/2007

Disclosure

05/08/2007

Moderation

VulDB entry created

Entries

1: VDB-36628

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

7.3

EPSS

0.63990

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-1202
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-1202
CVE Details	https://www.cvedetails.com/cve/CVE-2007-1202/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!