CVE-2007-0208

high

Description

Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 to 2006, and Office 2004 for Mac does not correctly check the properties of certain documents and warn the user of macro content, which allows user-assisted remote attackers to execute arbitrary code.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A700

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014

http://www.vupen.com/english/advisories/2007/0583

http://www.us-cert.gov/cas/techalerts/TA07-044A.html

http://www.securitytracker.com/id?1017639

http://www.securityfocus.com/bid/22477

http://www.osvdb.org/34385

Details

Source: Mitre, NVD

Published: 2007-02-13

Updated: 2018-10-12

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High