CVE-2008-0103 — Microsoft Office vulnerability

CWE-3995 documents3 sources

Severity

9.3CRITICALNVD

EPSS

55.5%

top 1.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Office

Timeline

PublishedFeb 13

Latest updateMay 1

Description

Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Office document that contains a malformed object, related to a "memory handling error," aka "Microsoft Office Execution Jump Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/office4 versions+3

🔴Vulnerability Details

GHSA

GHSA-3jhh-8hqg-j8q7: Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arb↗2022-05-01

▶

💬Community

Bugzilla

CVE-2008-2107 PHP 32 bit weak random seed↗2008-05-08

▶

Bugzilla

CVE-2008-2108 PHP weak 64 bit random seed↗2008-05-08

▶

Bugzilla

CVE-2008-0416 Mozilla arbitrary code execution↗2008-02-06

▶