CVE-2008-0108
CVE-2008-0108
Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length Vulnerability."
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/5107unverifiedexploitdbwww.exploit-db.com/exploits/31118unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=660http://marc.info/?l=bugtraq&m=120361015026386&w=2https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-011http://secunia.com/advisories/28904https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5202https://www.exploit-db.com/exploits/5107http://www.securityfocus.com/bid/27659http://www.securitytracker.com/id?1019388http://www.us-cert.gov/cas/techalerts/TA08-043C.htmlhttp://www.vupen.com/english/advisories/2008/0513/references