Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-1910Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Word

5 documents4 sources
Severity
6.8MEDIUMNVD
EPSS
45.3%
top 2.39%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Word
Timeline
PublishedApr 10
Latest updateMay 1

Description

Buffer overflow in wwlib.dll in Microsoft Word 2007 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted document, as demonstrated by file789-1.doc.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDmicrosoft/word2007

🔴Vulnerability Details

2
GHSA
GHSA-p9mj-p367-gv72: Buffer overflow in wwlib2022-05-01
CVEList
CVE-2007-1910: Buffer overflow in wwlib2007-04-10

💥Exploits & PoCs

2
Exploit-DB
Borland Interbase 2007 - 'ibserver.exe' Buffer Overflow (PoC)2008-04-11
Exploit-DB
Microsoft Word 2007 - Multiple Vulnerabilities2007-04-09
CVE-2007-1910 — Microsoft Word vulnerability | cvebase