Oval Definition:oval:org.mitre.oval:def:6292
Revision Date:2009-07-21Version:1
Title:File Converter Buffer Overflow Vulnerability
Description:Buffer overflow in the Works for Windows document converters in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, Office 2007 SP1, and Works 8.5 and 9 allows remote attackers to execute arbitrary code via a crafted Works .wps file that triggers memory corruption, aka "File Converter Buffer Overflow Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-1533
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Word 2000
Microsoft Word 2002
Microsoft Word 2003
Microsoft Word 2007
Microsoft Works 8.5
Microsoft Works 9
Definition Synopsis
  • AND
  • Microsoft Word 2000 is installed
  • AND the version of Works432.cnv is less than 2008.9.808.0
  • OR
  • Microsoft Word 2002 is installed
  • AND the version of Works432.cnv is less than 2008.9.808.0
  • OR
  • Microsoft Word 2003 is installed
  • AND the version of Wkcvqd01.dll is less than 9.8.1117.0
  • OR
  • Microsoft Word 2007 is installed
  • AND the version of Works632.cnv is less than 9.07.0613.0
    • BACK