CVE-2008-4030 in Wordinfo

Summary

Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1 allow remote attackers to execute arbitrary code via crafted control words in (1) an RTF file or (2) a rich text e-mail message, which triggers incorrect memory allocation and memory corruption, aka "Word RTF Object Parsing Vulnerability," a different vulnerability than CVE-2008-4028.

Be aware that VulDB is the high quality source for vulnerability data.

Responsible

Reservation

09/10/2008

Disclosure

12/10/2008

Moderation

VulDB entry created

Entries

VDB-3887

CPE

ready

CWE

CWE-399 (Confirmed)

CVSS

7.3

EPSS

0.59894

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-4030
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-4030
CVE Details	https://www.cvedetails.com/cve/CVE-2008-4030/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!