CVE-2008-2752

Microsoft Word 2000 9.0.2812 and 2003 11.8106.8172 - Denial of Service or Remote Code Execution via Crafted .doc File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-2752. PoCs published by Ivan Sanchez.

AI-analyzed exploit summary This exploit leverages a memory corruption vulnerability in Microsoft Word (CVE-2008-2752) by enticing a victim to open a malicious Word file, potentially leading to arbitrary code execution in the context of the logged-in user.

Description

Microsoft Word 2000 9.0.2812 and 2003 11.8106.8172 does not properly handle unordered lists, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .doc file. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Ivan Sanchez · textdoswindows
https://www.exploit-db.com/exploits/31934

This exploit leverages a memory corruption vulnerability in Microsoft Word (CVE-2008-2752) by enticing a victim to open a malicious Word file, potentially leading to arbitrary code execution in the context of the logged-in user.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Word (versions affected by CVE-2008-2752)
No auth needed
Prerequisites: Victim interaction to open a malicious Word file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8

Scores

EPSS 0.2777
EPSS Percentile 97.8%

Details

CWE
CWE-399
Status published
Products (2)
microsoft/word 2000 (5 CPE variants)
microsoft/word 2003 (4 CPE variants)
Published Jun 18, 2008
Tracked Since Feb 18, 2026