CVE-2007-0035

Current Description

Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, 2004 for Mac, and Works Suite 2004, 2005, and 2006 does not properly handle data in a certain array, which allows user-assisted remote attackers to execute arbitrary code, aka the "Word Array Overflow Vulnerability."

Basic Data

PublishedMay 08, 2007
Last ModifiedOctober 30, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-20
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactCOMPLETE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score9.3
SeverityHIGH
Exploitability Score8.6
Impact Score10.0
Obtain All Privilegetrue
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationMicrosoftOffice2000sp3******
    2.3ApplicationMicrosoftOffice2003*******
    2.3ApplicationMicrosoftOffice2003sp2******
    2.3ApplicationMicrosoftOffice2004*mac*****
    2.3ApplicationMicrosoftOfficexpsp3******
    2.3ApplicationMicrosoftWorks2004*******
    2.3ApplicationMicrosoftWorks2005*******
    2.3ApplicationMicrosoftWorks2006*******

Vulnerable Software List

VendorProductVersions
Microsoft Office 2000, 2003, 2004, xp
Microsoft Works 2004, 2005, 2006

References

NameSourceURLTags
VU#260777http://www.kb.cert.org/vuls/id/260777CERT-VNUS Government Resource
34387http://www.osvdb.org/34387OSVDB
HPSBST02214http://www.securityfocus.com/archive/1/468871/100/200/threadedHP
23804http://www.securityfocus.com/bid/23804BID
1018013http://www.securitytracker.com/id?1018013SECTRACK
TA07-128Ahttp://www.us-cert.gov/cas/techalerts/TA07-128A.htmlCERTUS Government Resource
ADV-2007-1709http://www.vupen.com/english/advisories/2007/1709VUPENVendor Advisory
MS07-024https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-024MS
oval:org.mitre.oval:def:1737https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1737OVAL