CVE-2010-1902

Description

Buffer overflow in Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP2; Microsoft Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Word Viewer; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code via unspecified properties in the data in a crafted RTF document, aka "Word RTF Parsing Buffer Overflow Vulnerability."

Affected products

• Microsoft / office2004 – 2004
• Microsoft / office2008 – 2008
• Microsoft / office_compatibility_pack2007 – 2007
• Microsoft / office_word_viewer
• Microsoft / open_xml_file_format_converter
• Microsoft / Word2007 – 2007
• Microsoft / Word2003 – 2003
• Microsoft / Word2002 – 2002

References

• MISChttp://www.us-cert.gov/cas/techalerts/TA10-222A.html
• MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-056
• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11472