CVE-2007-0208

Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 to 2006, and Office 2004 for Mac does not correctly check the properties of certain documents and warn the user of macro content, which allows user-assisted remote attackers to execute arbitrary code.

Published: Feb 13, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-0208
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
microsoft / works	2006	2006.x
microsoft / office	2004	2004.x
microsoft / word	2000	2000.x
microsoft / office	xp-sp3	xp-sp3.x
microsoft / office	2003-sp2	2003-sp2.x
microsoft / word	2003	2003.x
microsoft / works	2005	2005.x
microsoft / word	2002	2002.x
microsoft / word_viewer	2003	2003.x
microsoft / works	2004	2004.x
microsoft / office	2000-sp3	2000-sp3.x

http://www.osvdb.org/34385
http://www.securityfocus.com/bid/22477
http://www.securitytracker.com/id?1017639
http://www.us-cert.gov/cas/techalerts/TA07-044A.html
http://www.vupen.com/english/advisories/2007/0583
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A700

Vulnerability Database

289,599

CVE-2007-0208