Microsoft Office Word 2000 SP3 and 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a Word document with a crafted lcbPlcfBkfSdt field in the File Information Block (FIB), which bypasses an initialization step and triggers an "arbitrary free," aka "Word Memory Corruption Vulnerability."
| Software | From | Fixed in |
|---|---|---|
| microsoft / open_xml_file_format_converter | - | - |
| microsoft / office | 2008 | 2008.x |
| microsoft / office_word_viewer | 2003 | 2003.x |
| microsoft / office_compatibility_pack_for_word_excel_ppt_2007 | - | - |
| microsoft / office | 2004 | 2004.x |
| microsoft / office_word_viewer | 2003-sp3 | 2003-sp3.x |
| microsoft / works | 8.0 | 8.0.x |
| microsoft / office_outlook | 2007 | 2007.x |
| microsoft / office_outlook | 2007-sp1 | 2007-sp1.x |
| microsoft / office_word | 2000-sp3 | 2000-sp3.x |
| microsoft / office_word | 2002-sp3 | 2002-sp3.x |
| microsoft / office_word | 2003-sp3 | 2003-sp3.x |
| microsoft / office_word | 2007 | 2007.x |