CVE-2007-1911

Microsoft Word 2007 - Denial of Service via Crafted Document

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1911. PoCs published by muts.

AI-analyzed exploit summary This is a writeup describing file format bugs discovered in Microsoft Word 2007 through fuzzing, including unspecified overflows and CPU exhaustion DoS vulnerabilities. No actual exploit code is provided, only references to malicious files.

Description

Multiple unspecified vulnerabilities in Microsoft Word 2007 allow remote attackers to cause a denial of service (CPU consumption) via crafted documents, as demonstrated by (1) file798-1.doc and (2) file613-1.doc, possibly related to a buffer overflow.

Exploits (1)

exploitdb WRITEUP VERIFIED

by muts · textdoswindows

https://www.exploit-db.com/exploits/3690

View Code ZIP pw:eip

This is a writeup describing file format bugs discovered in Microsoft Word 2007 through fuzzing, including unspecified overflows and CPU exhaustion DoS vulnerabilities. No actual exploit code is provided, only references to malicious files.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Theoretical

Target: Microsoft Word 2007

No auth needed

Prerequisites: Access to download and open malicious files in Word 2007

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/3690

Scores

EPSS 0.1192

EPSS Percentile 95.6%

Details

Status published

Products (1)

microsoft/word 2007

Published Apr 10, 2007

Tracked Since Feb 18, 2026