CVE-2008-4841
Microsoft Windows Wordpad - '.doc' File Local Denial of Service (PoC)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
The WordPad Text Converter for Word 97 files in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted (1) .doc, (2) .wri, or (3) .rtf Word 97 file that triggers memory corruption, as exploited in the wild in December 2008. NOTE: As of 20081210, it is unclear whether this vulnerability is related to a WordPad issue disclosed on 20080925 with a 2008-crash.doc.rar example, but there are insufficient details to be sure.
El WordPad Text Converter para archivos Word 97 en Microsoft Windows 2000 SP4, XP SP2, y Server 2003 SP1 y SP2 permite a atacantes remotos ejecutar código de su elección a través de un archivo (1) .doc, (2) .wri, o (3) .rtf Word 97 manipulado que provoca una corrupción de memoria, como se ha explotado libremente en Diciembre de 2008. NOTA: desde 10122008, no está claro si esta vulnerabilidad está relacionada con un caso de WordPad descubierto en 25092008 con el ejemplo 2008-crash.doc.rar, pero no hay suficientes detalles para verificarlo.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2008-10-31 CVE Reserved
- 2008-12-10 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- 2024-11-10 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-399: Resource Management Errors
CAPEC
References (13)
| URL | Tag | Source |
|---|---|---|
| http://securityreason.com/securityalert/4711 | Third Party Advisory | |
| http://securitytracker.com/id?1021376 | Vdb Entry | |
| http://www.securityfocus.com/bid/31399 | Vdb Entry | |
| http://www.securityfocus.com/bid/32718 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA09-104A.html | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2008/3390 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2009/1024 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6050 | Signature |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/6560 | 2024-08-07 | |
| http://milw0rm.com/sploits/2008-crash.doc.rar | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/32997 | 2019-02-26 | |
| http://www.microsoft.com/technet/security/advisory/960906.mspx | 2019-02-26 | |
| https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-010 | 2019-02-26 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | * | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows 2000 Search vendor "Microsoft" for product "Windows 2000" | * | sp4 |
Safe
|
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | * | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Server 2003 Search vendor "Microsoft" for product "Windows Server 2003" | * | sp1 |
Safe
|
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | * | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Server 2003 Search vendor "Microsoft" for product "Windows Server 2003" | * | sp2 |
Safe
|
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | * | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Xp Search vendor "Microsoft" for product "Windows Xp" | * | sp2 |
Safe
|
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | unknown Search vendor "Microsoft" for product "Wordpad" and version "unknown" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows 2000 Search vendor "Microsoft" for product "Windows 2000" | * | sp4 |
Safe
|
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | unknown Search vendor "Microsoft" for product "Wordpad" and version "unknown" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Server 2003 Search vendor "Microsoft" for product "Windows Server 2003" | * | sp1 |
Safe
|
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | unknown Search vendor "Microsoft" for product "Wordpad" and version "unknown" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Server 2003 Search vendor "Microsoft" for product "Windows Server 2003" | * | sp2 |
Safe
|
| Microsoft Search vendor "Microsoft" | Wordpad Search vendor "Microsoft" for product "Wordpad" | unknown Search vendor "Microsoft" for product "Wordpad" and version "unknown" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Xp Search vendor "Microsoft" for product "Windows Xp" | * | sp2 |
Safe
|