CVE-2007-0208
 
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 to 2006, and Office 2004 for Mac does not correctly check the properties of certain documents and warn the user of macro content, which allows user-assisted remote attackers to execute arbitrary code.
Microsoft Word en Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 hasta 2006 y Office 2004 para Mac, no comprueba correctamente las propiedades de ciertos documentos y advierte al usuario del contenido de macros, lo que permite a atacantes remotos asistidos por el usuario ejecutar código arbitrario.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-01-12 CVE Reserved
- 2007-02-13 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-19 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (7)
URL | Tag | Source |
---|---|---|
http://www.osvdb.org/34385 | Vdb Entry | |
http://www.securityfocus.com/bid/22477 | Vdb Entry | |
http://www.securitytracker.com/id?1017639 | Vdb Entry | |
http://www.us-cert.gov/cas/techalerts/TA07-044A.html | Third Party Advisory | |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A700 | Signature |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.vupen.com/english/advisories/2007/0583 | 2018-10-12 | |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014 | 2018-10-12 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Microsoft Search vendor "Microsoft" | Office Search vendor "Microsoft" for product "Office" | 2000 Search vendor "Microsoft" for product "Office" and version "2000" | sp3 |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Office Search vendor "Microsoft" for product "Office" | 2003 Search vendor "Microsoft" for product "Office" and version "2003" | sp2 |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Office Search vendor "Microsoft" for product "Office" | 2004 Search vendor "Microsoft" for product "Office" and version "2004" | mac |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Office Search vendor "Microsoft" for product "Office" | xp Search vendor "Microsoft" for product "Office" and version "xp" | sp3 |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Word Search vendor "Microsoft" for product "Word" | 2000 Search vendor "Microsoft" for product "Word" and version "2000" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Word Search vendor "Microsoft" for product "Word" | 2002 Search vendor "Microsoft" for product "Word" and version "2002" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Word Search vendor "Microsoft" for product "Word" | 2003 Search vendor "Microsoft" for product "Word" and version "2003" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Word Viewer Search vendor "Microsoft" for product "Word Viewer" | 2003 Search vendor "Microsoft" for product "Word Viewer" and version "2003" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Works Search vendor "Microsoft" for product "Works" | 2004 Search vendor "Microsoft" for product "Works" and version "2004" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Works Search vendor "Microsoft" for product "Works" | 2005 Search vendor "Microsoft" for product "Works" and version "2005" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Works Search vendor "Microsoft" for product "Works" | 2006 Search vendor "Microsoft" for product "Works" and version "2006" | - |
Affected
|