CVE-2012-0183

Microsoft Word 2003 SP3 and 2007 SP2 and SP3, Office 2008 and 2011 for Mac, and Office Compatibility Pack SP2 and SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data, aka "RTF Mismatch Vulnerability."

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/49111
http://www.securityfocus.com/bid/53344
http://www.securitytracker.com/id?1027035
http://www.us-cert.gov/cas/techalerts/TA12-129A.html	US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-029
https://exchange.xforce.ibmcloud.com/vulnerabilities/75122
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15327
http://secunia.com/advisories/49111
http://www.securityfocus.com/bid/53344
http://www.securitytracker.com/id?1027035
http://www.us-cert.gov/cas/techalerts/TA12-129A.html	US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-029
https://exchange.xforce.ibmcloud.com/vulnerabilities/75122
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15327

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:office:2008::mac:::::
	cpe:2.3:a:microsoft:office_compatibility_pack::sp2::::::*
	cpe:2.3:a:microsoft:office_compatibility_pack::sp3::::::*
	cpe:2.3:a:microsoft:word:2003:sp3::::::
	cpe:2.3:a:microsoft:word:2007:sp2::::::
	cpe:2.3:a:microsoft:word:2007:sp3::::::

History

21 Nov 2024, 01:34

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/49111 -~~	() http://secunia.com/advisories/49111 -
References	~~() http://www.securityfocus.com/bid/53344 -~~	() http://www.securityfocus.com/bid/53344 -
References	~~() http://www.securitytracker.com/id?1027035 -~~	() http://www.securitytracker.com/id?1027035 -
References	~~() http://www.us-cert.gov/cas/techalerts/TA12-129A.html - US Government Resource~~	() http://www.us-cert.gov/cas/techalerts/TA12-129A.html - US Government Resource
References	~~() https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-029 -~~	() https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-029 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/75122 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/75122 -
References	~~() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15327 -~~	() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15327 -

Information

Published : 2012-05-09 00:55

Updated : 2025-04-11 00:51

NVD link : CVE-2012-0183

Mitre link : CVE-2012-0183

CVE.ORG link : CVE-2012-0183

JSON object : View

Products Affected

microsoft

office
word
office_compatibility_pack

CWE

NVD-CWE-Other

9.3 /10