CVE-2007-1202

Microsoft Word and Works Suite - Remote Code Execution via RTF Control Word Parsing

Title source: llm
STIX 2.1

Description

Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, 2004 for Mac, and Works Suite 2004, 2005, and 2006 does not properly parse certain rich text "property strings of certain control words," which allows user-assisted remote attackers to trigger heap corruption and execute arbitrary code, aka the "Word RTF Parsing Vulnerability."

References (10)

Core 10
Core References
Third Party Advisory, VDB Entry vendor-advisory x_refsource_hp
http://www.securityfocus.com/archive/1/468871/100/200/threaded
Patch vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018013
Patch third-party-advisory x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=525
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1709
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-128A.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/34388
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/555489
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23836
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1900

Scores

EPSS 0.2948
EPSS Percentile 98.0%

Details

CWE
CWE-20
Status published
Products (8)
microsoft/word 2000 sp3
microsoft/word 2002 sp3
microsoft/word 2003 sp2
microsoft/word 2004
microsoft/word_viewer 2003
microsoft/works 2004
microsoft/works 2005
microsoft/works 2006
Published May 08, 2007
Tracked Since Feb 18, 2026