9.3

CVE-2007-0515

Unspecified vulnerability in Microsoft Word allows user-assisted remote attackers to execute arbitrary code on Word 2000, and cause a denial of service on Word 2003, via unknown attack vectors that trigger memory corruption, as exploited by Trojan.Mdropper.W and later by Trojan.Mdropper.X, a different issue than CVE-2006-6456, CVE-2006-5994, and CVE-2006-6561.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftOffice Version2000 Updatesp3
MicrosoftOffice Version2003 Updatesp2
MicrosoftOffice Version2004 Editionmac
MicrosoftOffice Versionxp Updatesp3
MicrosoftWord Version2000
MicrosoftWord Version2002
MicrosoftWord Version2003
MicrosoftWord Viewer Version2003
MicrosoftWorks Version2004
MicrosoftWorks Version2005
MicrosoftWorks Version2006
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 38.16% 0.984
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.us-cert.gov/cas/techalerts/TA07-044A.html
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014
http://isc.sans.org/diary.html?storyid=2133
http://osvdb.org/31900
http://secunia.com/advisories/23950
Vendor Advisory
http://securitytracker.com/id?1017564
http://www.kb.cert.org/vuls/id/412225
US Government Resource
http://www.microsoft.com/technet/security/advisory/932114.mspx
Vendor Advisory
http://www.securityfocus.com/bid/22225
http://www.securityfocus.com/bid/22328
http://www.symantec.com/enterprise/security_response/weblog/2007/01/multiple_organizations_targett.html
http://www.symantec.com/enterprise/security_response/weblog/2007/01/new_microsoft_word_2000_vulner.html
http://www.symantec.com/enterprise/security_response/writeup.jsp?docid=2007-013010-5422-99&tabid=2
http://www.vupen.com/english/advisories/2007/0350
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/31834
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A528