Oval Definition:oval:org.mitre.oval:def:6555
Revision Date:2013-02-18Version:7
Title:Microsoft Office Word File Information Memory Corruption Vulnerability
Description:Stack-based buffer overflow in Microsoft Office Word 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, Open XML File Format Converter for Mac, Office Word Viewer 2003 SP3, and Office Word Viewer allow remote attackers to execute arbitrary code via a Word document with a malformed File Information Block (FIB) structure, aka "Microsoft Office Word File Information Memory Corruption Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-3135
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Office Word Viewer 2003
Microsoft Word 2002
Microsoft Word 2003
Definition Synopsis
  • Word 2002
  • Microsoft Word 2002 is installed
  • AND the version of Winword.exe is less than 10.0.6856.0
  • OR Word 2003
  • Microsoft Word 2003 is installed
  • AND the version of Winword.exe is less than 11.0.8313.0
  • OR Word Viewer 2003
  • Microsoft Word Viewer is installed
  • AND the version of Wordview.exe is less than 11.0.8313.0
  • BACK