Microsoft Word 0-day vulnerabilities updated since 31.01.2007
Published:		03.02.2007
Source:		CVE
SecurityVulns ID:		7133
Type:		client
Level:		7/10
Description:		Few unknown vulnerabilities are ussed for hidden malware installation.

Affected:		MICROSOFT : Office 2000
		MICROSOFT : Office 2003
CVE:		CVE-2007-0621 (** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-6456. Reason: This candidate is a duplicate of CVE-2006-6456. It was assigned for a targeted zero-day attack, but further analysis revealed it was for an older issue. Notes: All CVE users should reference CVE-2006-6456 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.)
		CVE-2007-0515 (Unspecified vulnerability in Microsoft Word allows user-assisted remote attackers to execute arbitrary code on Word 2000, and cause a denial of service on Word 2003, via unknown attack vectors that trigger memory corruption, as exploited by Trojan.Mdropper.W and later by Trojan.Mdropper.X, a different issue than CVE-2006-6456, CVE-2006-5994, and CVE-2006-6561.)

Original document

MICROSOFT, Microsoft Security Advisory (932114) Vulnerability in Microsoft Word 2000 Could Allow Remote Code Execution (03.02.2007)

Files:		Microsoft Word 2000 Unspecified Code Execution Exploit (0day)
		Microsoft Security Advisory (932114) Vulnerability in Microsoft Word 2000 Could Allow Remote Code Execution
Discuss:		Read or add your comments to this news (0 comments)