Vulnerabilities > Microsoft > Word > 2002
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-10-13 | CVE-2010-3221 | Code Injection vulnerability in Microsoft Office, Word and Word Viewer Microsoft Word 2002 SP3 and 2003 SP3, Office 2004 for Mac, and Word Viewer do not properly handle a malformed record during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Parsing Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-3220 | Code Injection vulnerability in Microsoft Office and Word Unspecified vulnerability in Microsoft Word 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Word document that triggers memory corruption, aka "Word Parsing Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-3219 | Code Injection vulnerability in Microsoft Word 2002 Array index vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a crafted Word document that triggers memory corruption, aka "Word Index Parsing Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-3218 | Code Injection vulnerability in Microsoft Word 2002 Heap-based buffer overflow in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via malformed records in a Word document, aka "Word Heap Overflow Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-3217 | Resource Management Errors vulnerability in Microsoft Word 2002 Double free vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a Word document with crafted List Format Override (LFO) records, aka "Word Pointer Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-3216 | Code Injection vulnerability in Microsoft Office and Word Microsoft Word 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a crafted Word document containing bookmarks that trigger use of an invalid pointer and memory corruption, aka "Word Bookmarks Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-3215 | Code Injection vulnerability in Microsoft Office and Word Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly handle unspecified return values during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Return Value Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-3214 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft products Stack-based buffer overflow in Microsoft Word 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; Word Viewer; Office Web Apps; and Word Web App allows remote attackers to execute arbitrary code via a crafted Word document, aka "Word Stack Overflow Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-2750 | Code Injection vulnerability in Microsoft Office and Word Array index error in Microsoft Word 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Word document that triggers memory corruption, aka "Word Index Vulnerability." | 9.3 |
2010-10-13 | CVE-2010-2748 | Code Injection vulnerability in Microsoft Office and Word Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly check an unspecified boundary during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Boundary Check Vulnerability." | 9.3 |