CVE-2008-4024
Currently unrated
Key Information:
- Vendor
- Microsoft
- Status
- Vendor
- CVE Published:
- 10 December 2008
Summary
Microsoft Office Word 2000 SP3 and 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a Word document with a crafted lcbPlcfBkfSdt field in the File Information Block (FIB), which bypasses an initialization step and triggers an "arbitrary free," aka "Word Memory Corruption Vulnerability."
References
EPSS Score
82% chance of being exploited in the next 30 days.
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database