⚠ Exploited in the wild
Exploitation observed in the wild. Not yet on CISA KEV.

CVE-2008-2244

CWE-3996 documents6 sources
Severity
9.3CRITICAL
EPSS
59.8%
top 1.74%
CISA KEV
Not in KEV
Exploit
Exploited in wild
Active exploitation observed
Affected products
1
Microsoft Office Word
Timeline
PublishedJul 9
Latest updateMay 1

Description

Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a .doc file that contains malformed data, as exploited in the wild in July 2008, and as demonstrated by attachement.doc.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

3
GHSA
GHSA-w7r7-qgmj-q7fh: Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a2022-05-01
CVEList
CVE-2008-2244: Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a2008-07-09
VulnCheck
Microsoft Office Word 2002 SP3 Malformed Data Remote Code Execution2008

📋Vendor Advisories

1
Red Hat
avahi: assertion failure after receiving a packet with corrupted checksum2010-06-23

💬Community

1
Bugzilla
CVE-2010-2244 avahi: assertion failure after receiving a packet with corrupted checksum2010-06-23
CVE-2008-2244 (CRITICAL CVSS 9.3) | Microsoft Office Word 2002 SP3 allo | cvebase.io