CVE-2015-0065
Microsoft Word 2007 SP3 - Remote Code Execution via Crafted Office Document
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2015-0065. PoCs published by Google Security Research.
AI-analyzed exploit summary This exploit demonstrates an access violation in Microsoft Office 2007 (Word) due to an invalid read dereference of a bad object pointer, leading to a controlled indirect call target. The crash occurs in MSO.dll and is triggered by a malformed RTF document.
Description
Microsoft Word 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "OneTableDocumentStream Remote Code Execution Vulnerability."
Exploits (1)
This exploit demonstrates an access violation in Microsoft Office 2007 (Word) due to an invalid read dereference of a bad object pointer, leading to a controlled indirect call target. The crash occurs in MSO.dll and is triggered by a malformed RTF document.