Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2007-0216
HistoryFeb 12, 2008 - 11:00 p.m.

CVE-2007-0216

2008-02-1223:00:00
CWE-20
[email protected]
web.nvd.nist.gov
29
microsoft works 6 file converter
remote code execution
.wps file
cve-2007-0216
input validation vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.681 Medium

EPSS

Percentile

98.0%

JSON

wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section length headers, aka “Microsoft Works File Converter Input Validation Vulnerability.”

Affected configurations

NVD
Node
microsoftofficeMatch2003sp2
OR
microsoftofficeMatch2003sp3
OR
microsoftworksMatch8.0
OR
microsoftworksMatch2005

Related

securityvulns 3
prion 1
cvelist 1
nvd 1
checkpoint_advisories 2
nessus 1
securityvulns
securityvulns
iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Heap Overflow Vulnerability
2008-02-13 00:00:00
Microsoft Works / Microsoft Office multiple security vulnerabilities
2008-02-13 00:00:00
Microsoft Security Bulletin MS08-011 – Important Vulnerabilities in Microsoft Works File Converter Could Allow Remote Code Execution (947081)
2008-02-13 00:00:00
prion
prion
Input validation
2008-02-12 23:00:00
cvelist
cvelist
CVE-2007-0216
2008-02-12 22:00:00
nvd
nvd
CVE-2007-0216
2008-02-12 23:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Works WPS File Field Length Handling Stack Overflow (MS08-011) - Ver2 (CVE-2008-0108)
2014-03-03 00:00:00
Microsoft Works WPS File Field Length Handling Stack Overflow (MS08-011; CVE-2007-0216; CVE-2008-0108)
2008-02-12 00:00:00
nessus
nessus
MS08-011: Vulnerabilities in Microsoft Works File Converter Could Allow Remote Code Execution (947081)
2008-06-09 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.681 Medium

EPSS

Percentile

98.0%

JSON
Related for CVE-2007-0216
securityvulns3prion1cvelist1nvd1checkpoint_advisories2nessus1