CVE-2008-2752

Published Jun 18, 2008

Last updated 7 years ago

Overview

Description: Microsoft Word 2000 9.0.2812 and 2003 11.8106.8172 does not properly handle unordered lists, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .doc file. NOTE: some of these details are obtained from third party information.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AEBFF713-0884-43BF-9AB8-777664FD64AF"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2000:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5947AFC8-483F-4597-AB8F-214356E857BD"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2000:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C426AFDD-870F-4CAD-9E93-636714984259"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2000:sr1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FEE7CC21-A458-49BB-B437-D5DF09339D83"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2000:sr1a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CFD9BC0-8755-4C3B-A198-A7F2DEFA82AD"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2003:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "379C2A4A-78EF-473D-954B-F5DD76C3D6CF"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2003:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FD0484E-6FF8-45DC-BFA9-03FC6DF2C602"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2003:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4182673-402A-4801-9A0F-2516EE923DB4"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:word:2003:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80F8E09E-E7F7-4D86-B140-3933EDC54E1C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References