Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-1911Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Word

4 documents4 sources
Severity
7.1HIGHNVD
EPSS
16.0%
top 5.21%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Word
Timeline
PublishedApr 10
Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Microsoft Word 2007 allow remote attackers to cause a denial of service (CPU consumption) via crafted documents, as demonstrated by (1) file798-1.doc and (2) file613-1.doc, possibly related to a buffer overflow.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

NVDmicrosoft/word2007

🔴Vulnerability Details

2
GHSA
GHSA-5996-686w-4qw4: Multiple unspecified vulnerabilities in Microsoft Word 2007 allow remote attackers to cause a denial of service (CPU consumption) via crafted document2022-05-01
CVEList
CVE-2007-1911: Multiple unspecified vulnerabilities in Microsoft Word 2007 allow remote attackers to cause a denial of service (CPU consumption) via crafted document2007-04-10

💥Exploits & PoCs

1
Exploit-DB
Microsoft Word 2007 - Multiple Vulnerabilities2007-04-09
CVE-2007-1911 — Microsoft Word vulnerability | cvebase