Total vulnerabilities in the database
Buffer overflow in LsCreateLine function (mso_203) in mso.dll and mso9.dll, as used by Microsoft Word and possibly other products in Microsoft Office 2003, 2002, and 2000, allows remote user-assisted attackers to cause a denial of service (crash) via a crafted Word DOC or other Office file type. NOTE: this issue was originally reported to allow code execution, but on 20060710 Microsoft stated that code execution is not possible, and the original researcher agrees.
| Software | From | Fixed in |
|---|---|---|
| microsoft / office | 2003-sp1 | 2003-sp1.x |
| microsoft / office | xp-sp3 | xp-sp3.x |
| microsoft / office | 2000 | 2000.x |
| microsoft / office | 2003-sp2 | 2003-sp2.x |
| microsoft / office | xp-sp2 | xp-sp2.x |
| microsoft / office | 2000-sp1 | 2000-sp1.x |
| microsoft / office | 2000-sp2 | 2000-sp2.x |
| microsoft / office | 2003 | 2003.x |
| microsoft / office | 2003-sp3 | 2003-sp3.x |
| microsoft / office | xp | xp.x |
| microsoft / office | xp-sp1 | xp-sp1.x |
| microsoft / office | 2000-sp3 | 2000-sp3.x |