New Search

MS Word 6.0 Font Conversion Vulnerability (Windows 2000)

oval:org.mitre.oval:def:1241

Microsoft Word for Windows 6.0 Converter (MSWRD632.WPC) as used in WordPad does not properly validate certain data lengths which allows remote attackers to execute arbitrary code via a .wri .rtf and .doc file sent by email or malicious web site aka "Font Conversion Vulnerability" a different vulnerability than CVE-2004-0571.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2004-0901
Product(s):
  • Microsoft Word for Windows 6.0 Converter