CVSS: 9.3EPSS: 94%CPEs: 3EXPL: 0CVE-2012-0177
https://notcve.org/view.php?id=CVE-2012-0177
Heap-based buffer overflow in the Office Works File Converter in Microsoft Office 2007 SP2, Works 9, and Works 6-9 File Converter allows remote attackers to execute arbitrary code via a crafted Works (aka .wps) file, aka "Office WPS Converter Heap Overflow Vulnerability." Desbordamiento de buffer de memoria dinámica en el conversor de archivo Office Works de Microsoft Office 2007 SP2, Works 9, y conversor de archivos Works 6-9. Permite a atacantes remotos ejecutar código arbitrario a través de un archivo Works modificado (.wps). • http://osvdb.org/81134 http://secunia.com/advisories/48723 http://www.securityfocus.com/bid/52867 http://www.securitytracker.com/id?1026910 http://www.securitytracker.com/id?1026911 http://www.us-cert.gov/cas/techalerts/TA12-101A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-028 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15598 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •