CVE-2008-1092
Published Mar 25, 2008
Last updated 6 years ago
Overview
- Description
- Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026.
- Source
- secure@microsoft.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "685F1981-EA61-4A00-89F8-A748A88962F8"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "644E2E89-F3E3-4383-B460-424D724EE62F"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B47EBFCC-1828-45AB-BC6D-FB980929A81A"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:word:2000:sp3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C426AFDD-870F-4CAD-9E93-636714984259"
},
{
"criteria": "cpe:2.3:a:microsoft:word:2002:sp3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F02894C4-57A7-45FE-B9D2-1A0EE3ABA455"
},
{
"criteria": "cpe:2.3:a:microsoft:word:2003:sp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4182673-402A-4801-9A0F-2516EE923DB4"
},
{
"criteria": "cpe:2.3:a:microsoft:word:2003_sp3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EA77105B-D33D-44D1-BBB0-98EC8A59F69F"
},
{
"criteria": "cpe:2.3:a:microsoft:word:2007:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A9B12493-4287-4AAD-9A18-D3FC3FCBE172"
},
{
"criteria": "cpe:2.3:a:microsoft:word:2007_sp1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A89CC23-C0B7-4050-AA21-CF74FE9ADE1B"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]