CVE-2007-1910

Microsoft Word 2007 - Buffer Overflow via Crafted Document

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1910. PoCs published by muts.

AI-analyzed exploit summary This is a writeup describing file format bugs discovered in Microsoft Word 2007 through fuzzing, including unspecified overflows and CPU exhaustion DoS vulnerabilities. No actual exploit code is provided, only references to malicious files.

Description

Buffer overflow in wwlib.dll in Microsoft Word 2007 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted document, as demonstrated by file789-1.doc.

Exploits (1)

exploitdb WRITEUP VERIFIED

by muts · textdoswindows

https://www.exploit-db.com/exploits/3690

View Code ZIP pw:eip

This is a writeup describing file format bugs discovered in Microsoft Word 2007 through fuzzing, including unspecified overflows and CPU exhaustion DoS vulnerabilities. No actual exploit code is provided, only references to malicious files.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Theoretical

Target: Microsoft Word 2007

No auth needed

Prerequisites: Access to download and open malicious files in Word 2007

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/23380

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/3690

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1017902

Scores

EPSS 0.2495

EPSS Percentile 97.6%

Details

Status published

Products (1)

microsoft/word 2007

Published Apr 10, 2007

Tracked Since Feb 18, 2026