Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-1092

Опубликовано: 25 мар. 2008
Источник: nvd
CVSS2: 9.3
EPSS Средний

Описание

Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:microsoft:word:2000:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2002:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2003:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2003_sp3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2007:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2007_sp1:*:*:*:*:*:*:*

EPSS

Процентиль: 98%
0.60636
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

github логотип

GHSA-m5h6-g75q-rpq4

github
почти 4 года назад

Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026.

EPSS

Процентиль: 98%
0.60636
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119