New Search

Word RTF Parsing Vulnerability

oval:org.mitre.oval:def:1900

Word (or Word Viewer) in Microsoft Office 2000 SP3 XP SP3 2003 SP2 2004 for Mac and Works Suite 2004 2005 and 2006 does not properly parse certain rich text "property strings of certain control words" which allows user-assisted remote attackers to trigger heap corruption and execute arbitrary code aka the "Word RTF Parsing Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
  • Microsoft Windows Server 2003
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2007-1202
Product(s):
  • Microsoft Word