Heap-based Buffer Overflow in Microsoft Office Works File Converter
CVE-2012-0177

Currently unrated

Key Information:

Vendor: Microsoft
Status: Office; Works 6-9 File Converter; Works
Vendor: CVE Published:; 10 April 2012

What is CVE-2012-0177?

A heap-based buffer overflow vulnerability exists in the Office Works File Converter within Microsoft Office. This flaw allows remote attackers to execute arbitrary code by crafting a malicious Works (.wps) file. When the infected file is processed, the vulnerability can be exploited to compromise system integrity and security, making it crucial for users to implement necessary patches and updates.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/bid/52867

vdb-entryx_refsource_BID

http://www.us-cert.gov/cas/techalerts/TA12-101A.html

third-party-advisoryx_refsource_CERT

EPSS Score

70% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 10, 2012
Vulnerability Reserved
Dec 13, 2011