Microsoft Word 2007 SP3, Word Viewer, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Invalid Pointer Remote Code Execution Vulnerability."
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-11-11 14:55
Updated : 2018-10-12 15:07
NVD link : CVE-2014-6335
Mitre link : CVE-2014-6335
JSON object : View
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')
Products Affected
microsoft
- office_compatibility_pack
- word
- office_word_viewer