Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-0108

Опубликовано: 12 фев. 2008
Источник: nvd
CVSS2: 9.3
EPSS Высокий

Описание

Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length Vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:works:8.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:works:2005:*:*:*:*:*:*:*

EPSS

Процентиль: 99%
0.75419
Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

github логотип

GHSA-mfc9-4wfx-76c8

github
почти 4 года назад

Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length Vulnerability."

EPSS

Процентиль: 99%
0.75419
Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119