Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-0515

Published: 26/01/2007 Updated: 12/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 940
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Office

Vulnerability Summary

Unspecified vulnerability in Microsoft Word allows user-assisted remote malicious users to execute arbitrary code on Word 2000, and cause a denial of service on Word 2003, via unknown attack vectors that trigger memory corruption, as exploited by Trojan.Mdropper.W and later by Trojan.Mdropper.X, a different issue than CVE-2006-6456, CVE-2006-5994, and CVE-2006-6561.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft office 2000

microsoft word viewer 2003

microsoft works 2004

microsoft word 2002

microsoft word 2003

microsoft office xp

microsoft word 2000

microsoft office 2003

microsoft office 2004

microsoft works 2005

microsoft works 2006

Exploits

Exploit DB: Microsoft Word 2000 - Malformed Function Code Execution
source: wwwsecurityfocuscom/bid/22225/info Microsoft Word 2000 is prone to a remote code-execution vulnerability Microsoft Word 2000 is confirmed vulnerable to a remote code-execution issue Exploit attempts against Word 2003/XP will consume all CPU resources and will cause a denial of service for legitimate users Note that this issue ...
Exploit DB: Microsoft Word 2000 - Code Execution
############ use at your own risk ******* + Title: Microsoft Word 2000 Unspecified Code Execution Vulnerability Exploit (0-day) + code by xCuter (BongGoo Kang - xcuter@returnaddrorg) + Critical: High Critical + Impact: MS Word 2000 -> Could Allow Arbitrary Command Execution MS word 2003 -> Attempts against Word 2003 ...

References

NVD-CWE-noinfohttp://www.symantec.com/enterprise/security_response/weblog/2007/01/new_microsoft_word_2000_vulner.htmlhttp://www.securityfocus.com/bid/22225http://isc.sans.org/diary.html?storyid=2133http://www.symantec.com/enterprise/security_response/weblog/2007/01/multiple_organizations_targett.htmlhttp://www.symantec.com/enterprise/security_response/writeup.jsp?docid=2007-013010-5422-99&tabid=2http://www.microsoft.com/technet/security/advisory/932114.mspxhttp://www.kb.cert.org/vuls/id/412225http://www.securityfocus.com/bid/22328http://securitytracker.com/id?1017564http://secunia.com/advisories/23950http://www.us-cert.gov/cas/techalerts/TA07-044A.htmlhttp://osvdb.org/31900http://www.vupen.com/english/advisories/2007/0350https://exchange.xforce.ibmcloud.com/vulnerabilities/31834https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A528https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014https://nvd.nist.govhttps://www.exploit-db.com/exploits/29524/https://www.kb.cert.org/vuls/id/412225
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook