Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2009-0088
HistoryApr 15, 2009 - 8:00 a.m.

CVE-2009-0088

2009-04-1508:00:00
CWE-20
microsoft
web.nvd.nist.gov
51
wordperfect
converter
microsoft office
word
2000
stack corruption
vulnerability
cve-2009-0088
nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.28

Percentile

96.9%

JSON

The WordPerfect 6.x Converter (WPFT632.CNV, 1998.1.27.0) in Microsoft Office Word 2000 SP3 and Microsoft Office Converter Pack does not properly validate the length of an unspecified string, which allows remote attackers to execute arbitrary code via a crafted WordPerfect 6.x file, related to an unspecified counter and control structures on the stack, aka โ€œWord 2000 WordPerfect 6.x Converter Stack Corruption Vulnerability.โ€

Affected configurations

Nvd
Node
microsoftoffice_converter_packMatch2003
OR
microsoftoffice_wordMatch2000sp3
OR
microsoftoffice_wordMatch2002sp3
AND
microsoftwindows_2000sp4
OR
microsoftwindows_server_2003
OR
microsoftwindows_server_2003sp1
OR
microsoftwindows_server_2003sp1itanium
OR
microsoftwindows_server_2003sp2
OR
microsoftwindows_xppro_x64
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp2pro_x64
OR
microsoftwindows_xpsp3
VendorProductVersionCPE
microsoftoffice_converter_pack2003cpe:2.3:a:microsoft:office_converter_pack:2003:*:*:*:*:*:*:*
microsoftoffice_word2000cpe:2.3:a:microsoft:office_word:2000:sp3:*:*:*:*:*:*
microsoftoffice_word2002cpe:2.3:a:microsoft:office_word:2002:sp3:*:*:*:*:*:*
microsoftwindows_2000*cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
microsoftwindows_server_2003*cpe:2.3:o:microsoft:windows_server_2003:*:*:*:*:*:*:*:*
microsoftwindows_server_2003*cpe:2.3:o:microsoft:windows_server_2003:*:sp1:*:*:*:*:*:*
microsoftwindows_server_2003*cpe:2.3:o:microsoft:windows_server_2003:*:sp1:itanium:*:*:*:*:*
microsoftwindows_server_2003*cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:*:pro_x64:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
Rows per page:
1-10 of 121

Related

seebug 1
checkpoint_advisories 1
nvd 1
securityvulns 3
prion 1
cvelist 1
nessus 1
openvas 2
seebug
seebug
Microsoft Word 2000 WordPerfect่ฝฌๆขๅ™จๆ ˆๆบขๅ‡บๆผๆดž๏ผˆMS09-010๏ผ‰
2009-04-16 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Word 2000 WordPerfect Converter Stack Corruption (MS09-010; CVE-2009-0088)
2009-05-17 00:00:00
nvd
nvd
CVE-2009-0088
2009-04-15 08:00:00
securityvulns
securityvulns
iDefense Security Advisory 04.14.09: Microsoft Word 2000 WordPerfect 6.x Converter Stack Corruption Vulnerability
2009-04-14 00:00:00
Microsoft Wordpad / Microsoft Works multiple security vulnerabilities
2009-06-10 00:00:00
Microsoft Security Bulletin MS09-010 - Critical Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477)
2009-04-14 00:00:00
prion
prion
Memory corruption
2009-04-15 08:00:00
cvelist
cvelist
CVE-2009-0088
2009-04-15 03:49:00
nessus
nessus
MS09-010: Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477)
2009-04-15 00:00:00
openvas
openvas
WordPad and Office Text Converter Memory Corruption Vulnerability (960477)
2008-12-12 00:00:00
WordPad and Office Text Converter Memory Corruption Vulnerability (960477)
2008-12-12 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.28

Percentile

96.9%

JSON
Related for CVE-2009-0088
seebug1checkpoint_advisories1nvd1securityvulns3prion1cvelist1nessus1openvas2