Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Word 0-day vulnerabilities
updated since 31.01.2007
Published:03.02.2007
Source:
SecurityVulns ID:7133
Type:client
Threat Level:
7/10
Description:Few unknown vulnerabilities are ussed for hidden malware installation.
Affected:MICROSOFT : Office 2000
 MICROSOFT : Office 2003
CVE:CVE-2007-0621 (** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-6456. Reason: This candidate is a duplicate of CVE-2006-6456. It was assigned for a targeted zero-day attack, but further analysis revealed it was for an older issue. Notes: All CVE users should reference CVE-2006-6456 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.)
 CVE-2007-0515 (Unspecified vulnerability in Microsoft Word allows user-assisted remote attackers to execute arbitrary code on Word 2000, and cause a denial of service on Word 2003, via unknown attack vectors that trigger memory corruption, as exploited by Trojan.Mdropper.W and later by Trojan.Mdropper.X, a different issue than CVE-2006-6456, CVE-2006-5994, and CVE-2006-6561.)
Original documentdocumentMICROSOFT, Microsoft Security Advisory (932114) Vulnerability in Microsoft Word 2000 Could Allow Remote Code Execution (03.02.2007)
Files:Microsoft Word 2000 Unspecified Code Execution Exploit (0day)
 Microsoft Security Advisory (932114) Vulnerability in Microsoft Word 2000 Could Allow Remote Code Execution

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod