Vulnerabilities > Microsoft > Works
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-12-14 | CVE-2006-6561 | Unspecified vulnerability in Microsoft products Unspecified vulnerability in Microsoft Word 2000, 2002, and Word Viewer 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted DOC file that triggers memory corruption, as demonstrated via the 12122006-djtest.doc file, a different issue than CVE-2006-5994 and CVE-2006-6456. | 9.3 |
| 2006-12-11 | CVE-2006-6456 | Unspecified vulnerability in Microsoft products Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994. | 9.3 |
| 2006-12-06 | CVE-2006-5994 | Remote Code Execution vulnerability in Microsoft Word Malformed String Arbitrary Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word and Word Viewer 2003, Word 2004 and 2004 v. | 9.3 |
| 2006-07-18 | CVE-2006-3654 | Remote vulnerability in Microsoft Works 8.0 Buffer overflow in wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows remote attackers to cause a denial of service (CPU consumption or crash) via crafted Excel files. | 2.6 |
| 2006-07-18 | CVE-2006-3653 | Remote vulnerability in Microsoft Works 8.0 wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows remote attackers to cause a denial of service (CPU consumption or crash) via crafted (1) Works, (2) Excel, and (3) Lotus 1-2-3 files. | 2.6 |
| 2005-02-08 | CVE-2004-0848 | Unspecified vulnerability in Microsoft products Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames. | 7.5 |
| 2004-09-28 | CVE-2004-0573 | Unspecified vulnerability in Microsoft products Buffer overflow in the converter for Microsoft WordPerfect 5.x on Office 2000, Office XP, Office 2003, and Works Suites 2001 through 2004 allows remote attackers to execute arbitrary code via a malicious document or website. | 7.5 |
| 2003-12-15 | CVE-2003-0821 | Unspecified vulnerability in Microsoft Word and Works Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypasses the macro security model. | 7.5 |
| 2003-12-15 | CVE-2003-0820 | Buffer Overflow vulnerability in Microsoft Word and Works Microsoft Word 97, 98(J), 2000, and 2002, and Microsoft Works Suites 2001 through 2004, do not properly check the length of the "Macro names" data value, which could allow remote attackers to execute arbitrary code via a buffer overflow attack. | 7.5 |
| 2003-10-20 | CVE-2003-0664 | Unspecified vulnerability in Microsoft Word and Works Microsoft Word 2002, 2000, 97, and 98(J) does not properly check certain properties of a document, which allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document. | 7.5 |