CVE-2004-0963
Last modified
CVE-2004-0963 is a vulnerability of currently unknown severity. Buffer overflow in Microsoft Word 2002 (10.6612.6714) SP3, and possibly other versions, allows remote attackers to cause a denial of service (application exception) and possibly execute arbitrary code in winword.exe via certain unexpected values in a .doc file, including (1) an offset that triggers an out-of-bounds memory access, (2) a certain value that causes a large memory copy as triggered by an integer conversion error, and other values.. EPSS estimates a 32.66% chance of exploitation in the next 30 days.
Description
Buffer overflow in Microsoft Word 2002 (10.6612.6714) SP3, and possibly other versions, allows remote attackers to cause a denial of service (application exception) and possibly execute arbitrary code in winword.exe via certain unexpected values in a .doc file, including (1) an offset that triggers an out-of-bounds memory access, (2) a certain value that causes a large memory copy as triggered by an integer conversion error, and other values.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Word | 2002 | Sp3 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2004-0963?
How severe is CVE-2004-0963?
How do I fix CVE-2004-0963?
Are you affected by CVE-2004-0963?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST