CVE-2008-0109 Information

Feb 14, 2021 cve

Description

Word in Microsoft Office 2000 SP3 XP SP3 Office 2003 SP2 and Office Word Viewer 2003 allows remote attackers to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file which triggers length calculation errors and memory corruption.

Reference

http://marc.info/?l=bugtraq&m=120361015026386&w=2 http://secunia.com/advisories/28901 http://www.kb.cert.org/vuls/id/692417 http://www.securityfocus.com/archive/1/488071/100/0/threaded http://www.securityfocus.com/bid/27656 http://www.securitytracker.com/id?1019374 http://www.us-cert.gov/cas/techalerts/TA08-043C.html http://www.vupen.com/english/advisories/2008/0511/references https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-009 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A5073

Share on: