Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2008-0109

Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Office Word Viewer 2003 allows remote attackers to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file, which triggers length calculation errors and memory corruption.

  • Published: Feb 13, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-0109
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 9.3
  • AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
microsoft / office xp-sp3 xp-sp3.x
microsoft / word - -
microsoft / office 2003-sp2 2003-sp2.x
microsoft / office 2003 2003.x
microsoft / office 2000-sp3 2000-sp3.x