Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft word 97 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2000-0088
Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an malicious user to execute commands, aka the "Malformed Conversion Data" vulnerability.
Microsoft Office 97
Microsoft Powerpoint 97
Microsoft Word 98
Microsoft Office 2000
Microsoft Powerpoint 2000
Microsoft Word 97
Microsoft Word 2000
Microsoft Office Converter Pack 2000.0
4.6
CVSSv2
CVE-2001-0240
Microsoft Word before Word 2002 allows malicious users to automatically execute macros without warning the user via a Rich Text Format (RTF) document that links to a template with the embedded macro.
Microsoft Word 97
Microsoft Word 98
Microsoft Word 2000
Microsoft Word 2001
4.6
CVSSv2
CVE-2001-0501
Microsoft Word 2002 and previous versions allows malicious users to automatically execute macros without warning the user by embedding the macros in a manner that escapes detection by the security scanner.
Microsoft Word 2000
Microsoft Word
Microsoft Word 98
Microsoft Word 97
Microsoft Word 2001
5
CVSSv2
CVE-2002-1143
Microsoft Word and Excel allow remote malicious users to steal sensitive information via certain field codes that insert the information when the document is returned to the attacker, as demonstrated in Word using (1) INCLUDETEXT or (2) INCLUDEPICTURE, aka "Flaw in Word Fiel...
Microsoft Excel 2002
Microsoft Word 2000
Microsoft Word
Microsoft Word 97
Microsoft Word 98
Microsoft Word 2002
Microsoft Word 2001
2 EDB exploits
7.5
CVSSv2
CVE-2003-0664
Microsoft Word 2002, 2000, 97, and 98(J) does not properly check certain properties of a document, which allows malicious users to bypass the macro security model and automatically execute arbitrary macros via a malicious document.
Microsoft Word 98
Microsoft Word 2000
Microsoft Word 2002
Microsoft Works 2001
Microsoft Works 2002
Microsoft Works 2003
Microsoft Word 97
7.5
CVSSv2
CVE-2003-0820
Microsoft Word 97, 98(J), 2000, and 2002, and Microsoft Works Suites 2001 through 2004, do not properly check the length of the "Macro names" data value, which could allow remote malicious users to execute arbitrary code via a buffer overflow attack.
Microsoft Word 98
Microsoft Word 2000
Microsoft Works 2001
Microsoft Works 2002
Microsoft Word 97
Microsoft Word 2002
Microsoft Works 2003
Microsoft Works 2004
7.5
CVSSv2
CVE-2003-0821
Microsoft Excel 97, 2000, and 2002 allows remote malicious users to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypasses the macro security model.
Microsoft Word 97
Microsoft Word 98
Microsoft Word 2000
Microsoft Works 2004
Microsoft Word 2002
Microsoft Works 2001
Microsoft Works 2002
Microsoft Works 2003
7.5
CVSSv2
CVE-1999-0354
Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious e...
Microsoft Internet Explorer 4.0
Microsoft Internet Explorer 5.0
Microsoft Word 97
9.3
CVSSv2
CVE-2010-2563
The Word 97 text converter in the WordPad Text Converters in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly parse malformed structures in Word 97 documents, which allows remote malicious users to execute arbitrary code via a crafted document containing an ...
Microsoft Windows Xp -
Microsoft Windows Server 2003
Microsoft Windows Xp
9.3
CVSSv2
CVE-2009-0235
Stack-based buffer overflow in the Word 97 text converter in WordPad in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2 allows remote malicious users to execute arbitrary code via a crafted Word 97 file that triggers memory corruption, related to use of in...
Microsoft Windows Xp
Microsoft Windows 2000
Microsoft Windows 2003 Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »