CVE-2010-1902

Buffer overflow in Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP2; Microsoft Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Word Viewer; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code via unspecified properties in the data in a crafted RTF document, aka "Word RTF Parsing Buffer Overflow Vulnerability."
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:word:2002:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2003:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2007:sp2:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_word_viewer:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:15

Type Values Removed Values Added
References () http://www.us-cert.gov/cas/techalerts/TA10-222A.html - US Government Resource () http://www.us-cert.gov/cas/techalerts/TA10-222A.html - US Government Resource
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-056 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-056 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11472 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11472 -

Information

Published : 2010-08-11 18:47

Updated : 2024-11-21 01:15


NVD link : CVE-2010-1902

Mitre link : CVE-2010-1902

CVE.ORG link : CVE-2010-1902


JSON object : View

Products Affected

microsoft

  • open_xml_file_format_converter
  • office_compatibility_pack
  • word
  • office_word_viewer
  • office
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer