exploitDog

CVE-2007-0216

Опубликовано: 12 фев. 2008

Источник: nvd

CVSS2: 9.3

EPSS Высокий

Описание

wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section length headers, aka "Microsoft Works File Converter Input Validation Vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:works:8.0:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:works:2005:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.71265

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-2c6f-q4p6-g2x2

github

больше 3 лет назад

wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section length headers, aka "Microsoft Works File Converter Input Validation Vulnerability."

EPSS

Процентиль: 99%

0.71265

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-20