CVSS: 9.3EPSS: 71%CPEs: 4EXPL: 1CVE-2007-0216 – Microsoft Office 2003 - '.wps' Local Stack Overflow (MS08-011)
https://notcve.org/view.php?id=CVE-2007-0216
12 Feb 2008 — wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section length headers, aka "Microsoft Works File Converter Input Validation Vulnerability." La biblioteca wkcvqd01.dll en Microsoft Works versión 6 File Converter, tal y como es usado en Office 2003 SP2, Works versión 8.0 y Works Suite 2005, permite a los atacantes remotos ejecutar código arbitrario por medio de un arch... • https://www.exploit-db.com/exploits/5107 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 77%CPEs: 4EXPL: 1CVE-2008-0105 – Microsoft Office 2003 - '.wps' Local Stack Overflow (MS08-011)
https://notcve.org/view.php?id=CVE-2008-0105
12 Feb 2008 — Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section header index table information, aka "Microsoft Works File Converter Index Table Vulnerability." Microsoft Works 6 File Converter, como el utilizado en Office 2003 SP2 y SP3, Works 8.0, y Works Suite 2005, permite a atacantes remotos ejecutar código de su elección a través de un fichero .wps con una sección de la cabecera... • https://www.exploit-db.com/exploits/5107 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 76%CPEs: 4EXPL: 2CVE-2008-0108 – Microsoft Office 2003 - '.wps' Local Stack Overflow (MS08-011)
https://notcve.org/view.php?id=CVE-2008-0108
12 Feb 2008 — Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length Vulnerability." Un desbordamiento de búfer en la región stack de la memoria en la biblioteca wkcvqd01.dll en Microsoft Works versión 6 File Converter, tal y como es usado en Office 2003 SP2 y SP3, Works versión 8.0 y Wo... • https://www.exploit-db.com/exploits/5107 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 60%CPEs: 13EXPL: 0CVE-2006-0009
https://notcve.org/view.php?id=CVE-2006-0009
14 Mar 2006 — Buffer overflow in Microsoft Office 2000 SP3, XP SP3, and other versions and packages, allows user-assisted attackers to execute arbitrary code via a routing slip that is longer than specified by the provided length field, as exploited by malware such as TROJ_MDROPPER.BH and Trojan.PPDropper.E in attacks against PowerPoint. • http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0597.html •
CVSS: 8.8EPSS: 45%CPEs: 16EXPL: 0CVE-2004-0573
https://notcve.org/view.php?id=CVE-2004-0573
17 Sep 2004 — Buffer overflow in the converter for Microsoft WordPerfect 5.x on Office 2000, Office XP, Office 2003, and Works Suites 2001 through 2004 allows remote attackers to execute arbitrary code via a malicious document or website. Desbordamiento de búfer en el convertidor de Microsoft WordPerfect 5.x en Office 2000, Office XP, Offiece 2003 y las suites Works 2001 a 2004 permite a atacantes remotos ejecutar código de su elección mediante un documento o un sitio web malicioso. • http://marc.info/?l=bugtraq&m=109519646030906&w=2 •
CVSS: 9.8EPSS: 27%CPEs: 27EXPL: 0CVE-2003-0820
https://notcve.org/view.php?id=CVE-2003-0820
18 Nov 2003 — Microsoft Word 97, 98(J), 2000, and 2002, and Microsoft Works Suites 2001 through 2004, do not properly check the length of the "Macro names" data value, which could allow remote attackers to execute arbitrary code via a buffer overflow attack. Micrososft Word 97, 98(J), 2000 y 2002, y Micrososft Works Suites 2001 a 2004, no comprueban adecuadamente la longitud de valor de datos "Macro Names", lo que podría permitir a atacantes remotos ejecutar código arbitrario mediante un ataque de desbordamiento de búfer... • http://archives.neohapsis.com/archives/bugtraq/2003-10/0163.html •
CVSS: 8.8EPSS: 14%CPEs: 27EXPL: 0CVE-2003-0821
https://notcve.org/view.php?id=CVE-2003-0821
18 Nov 2003 — Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypasses the macro security model. Microsoft Excel 97, 2000 y 2002 permite a atacantes remotos ejecutar código arbitrario mediante una hoja de cálculo con una macro XLM (Excel 4) que evita el modelo de seguridad de macros. • http://www.securityfocus.com/bid/9010 •
CVSS: 9.8EPSS: 9%CPEs: 16EXPL: 0CVE-2003-0664
https://notcve.org/view.php?id=CVE-2003-0664
04 Sep 2003 — Microsoft Word 2002, 2000, 97, and 98(J) does not properly check certain properties of a document, which allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-035 •