CVE-2008-4841 – Microsoft Windows Wordpad - '.doc' File Local Denial of Service (PoC)

https://notcve.org/view.php?id=CVE-2008-4841

The WordPad Text Converter for Word 97 files in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted (1) .doc, (2) .wri, or (3) .rtf Word 97 file that triggers memory corruption, as exploited in the wild in December 2008. NOTE: As of 20081210, it is unclear whether this vulnerability is related to a WordPad issue disclosed on 20080925 with a 2008-crash.doc.rar example, but there are insufficient details to be sure. El WordPad Text Converter para archivos Word 97 en Microsoft Windows 2000 SP4, XP SP2, y Server 2003 SP1 y SP2 permite a atacantes remotos ejecutar código de su elección a través de un archivo (1) .doc, (2) .wri, o (3) .rtf Word 97 manipulado que provoca una corrupción de memoria, como se ha explotado libremente en Diciembre de 2008. NOTA: desde 10122008, no está claro si esta vulnerabilidad está relacionada con un caso de WordPad descubierto en 25092008 con el ejemplo 2008-crash.doc.rar, pero no hay suficientes detalles para verificarlo. • https://www.exploit-db.com/exploits/6560 http://milw0rm.com/sploits/2008-crash.doc.rar http://secunia.com/advisories/32997 http://securityreason.com/securityalert/4711 http://securitytracker.com/id?1021376 http://www.microsoft.com/technet/security/advisory/960906.mspx http://www.securityfocus.com/bid/31399 http://www.securityfocus.com/bid/32718 http://www.us-cert.gov/cas/techalerts/TA09-104A.html http://www.vupen.com/english/advisories/2008/3390 http://www.vupen.com/en • CWE-399: Resource Management Errors •