CVE-2012-2539
| CVE Published | 2012-12-12 |
|---|---|
| Related CWE(s) | CWE-787: Out-of-bounds Write |
| Related Vendor(s) | microsoft |
| Related Product(s) | sharepoint_server, office_web_apps, office_word_viewer, office_compatibility_pack, word |
| Exploitation Reported (CISA KEV) | 2022-03-28 |
| CVSS 3 Base Score | 7.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | LOCAL |
Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; and Office Web Apps 2010 SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted RTF data, aka "Word RTF 'listoverridecount' Remote Code Execution Vulnerability."
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph