CVE-2003-0666

Microsoft Wordperfect Converter - RCE

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2003-0666. PoCs published by valgasu.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Microsoft WordPerfect Document Converter (CVE-2003-0666) by injecting shellcode into a malformed document file. It supports multiple targets and shell types (bind/reverse).

Description

Buffer overflow in Microsoft Wordperfect Converter allows remote attackers to execute arbitrary code via modified data offset and data size parameters in a Corel WordPerfect file.

Exploits (2)

exploitdb WORKING POC VERIFIED

by valgasu · cremotewindows

https://www.exploit-db.com/exploits/92

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Microsoft WordPerfect Document Converter (CVE-2003-0666) by injecting shellcode into a malformed document file. It supports multiple targets and shell types (bind/reverse).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft WordPerfect Document Converter (MS03-036)

No auth needed

Prerequisites: A vulnerable version of Microsoft WordPerfect Document Converter · Ability to deliver a malformed document file to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb SUSPICIOUS VERIFIED

by valgasu · textlocalwindows

https://www.exploit-db.com/exploits/23096

View Code ZIP pw:eip

The provided content is a description of CVE-2003-0666 without actual exploit code, redirecting to an external download link. This is characteristic of a suspicious entry as it lacks technical details and functional code.

Classification

Suspicious 90%

Attack Type

Rce

Complexity

Theoretical

Reliability

Theoretical

Target: Microsoft WordPerfect Converter (versions shipping with Office and other products)

No auth needed

Prerequisites: User interaction to open a malformed document

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=106261952827573&w=2

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=106279971612961&w=2

Vendor Advisory mailing-list x_refsource_vulnwatch

http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0092.html

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-036

Scores

EPSS 0.2142

EPSS Percentile 97.3%

Details

Status published

Products (1)

microsoft/wordperfect_converter

Published Oct 20, 2003

Tracked Since Feb 18, 2026