CVE-2007-0209

critical

Microsoft

CVSS v3 Base Score

9.3

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS Score

54.1%

Exploitation probability in 30 days

Top 2% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Confidentiality

Integrity

Availability

Published: February 13, 2007 (7029 days ago)

Last Modified: April 23, 2026

Vendor: Microsoft

Source: NVD

Description

Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 to 2006, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via a Word file with a malformed drawing object, which leads to memory corruption.

CWE

CWE-94

Affected Products

microsoft officemicrosoft works

References

🔗 osvdb.org 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.us-cert.gov 🔗 www.vupen.com

CVE-2007-0209

Vulnerability Report

Description

CWE

Affected Products

References