CVE-2007-1202
Microsoft Word and Works Suite - Remote Code Execution via RTF Control Word Parsing
Title source: llmDescription
Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, 2004 for Mac, and Works Suite 2004, 2005, and 2006 does not properly parse certain rich text "property strings of certain control words," which allows user-assisted remote attackers to trigger heap corruption and execute arbitrary code, aka the "Word RTF Parsing Vulnerability."
References (10)
Core 10
Core References
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_hp
http://www.securityfocus.com/archive/1/468871/100/200/threaded
Patch vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018013
Patch third-party-advisory
x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=525
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1709
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-024
US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-128A.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/34388
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/555489
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/23836
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1900
Scores
EPSS
0.2948
EPSS Percentile
98.0%
Details
CWE
CWE-20
Status
published
Products (8)
microsoft/word
2000 sp3
microsoft/word
2002 sp3
microsoft/word
2003 sp2
microsoft/word
2004
microsoft/word_viewer
2003
microsoft/works
2004
microsoft/works
2005
microsoft/works
2006
Published
May 08, 2007
Tracked Since
Feb 18, 2026