CVE-2008-2244
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-2244
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a .doc file that contains malformed data, as exploited in the wild in July 2008, and as demonstrated by attachement.doc.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Word智能标签无效长度处理内存破坏漏洞(MS08-042)
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Word是美国微软(Microsoft)公司Office套件中的一款文字处理软件。 Word没有正确地处理文档中的无效智能标签长度值,如果用户打开了带有畸形记录值的特制Word文件,就可能触发内存破坏。成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 目前这个漏洞正在被名为Trojan.Mdropper的木马积极的利用。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-2244
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-2244
请登录查看更多情报信息。
- http://isc.sans.org/diary.html?storyid=4696x_refsource_MISC
- http://www.microsoft.com/technet/security/advisory/953635.mspxx_refsource_CONFIRM
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5897vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2008-2244
Same Patch Batch · n/a · 2008-07-09 · 43 CVEs total
| CVE-2007-3653 | Farsi Script 跨站脚本漏洞 | |
| CVE-2008-3095 | Drupal Organic Groups 跨站脚本和信息披露漏洞 | |
| CVE-2008-2376 | Ruby 数字错误漏洞 | |
| CVE-2008-2375 | vsftpd 资源管理错误漏洞 | |
| CVE-2008-3077 | Linux Kernel 资源管理错误漏洞 | |
| CVE-2008-3080 | myWebland myBloggie 跨站请求伪造漏洞 | |
| CVE-2008-3081 | Avaya Communication Manager 多个远程命令执行任务 | |
| CVE-2008-3082 | Commtouch反垃圾邮件企业网关PARAMS参数跨站脚本漏洞 | |
| CVE-2008-3083 | Joomla,Mambo Weblink 组件 'catid'参数SQL注入漏洞 | |
| CVE-2008-3079 | opera 未明漏洞 | |
| CVE-2008-1663 | HP System Management Homepage (SMH) for Linux and Windows 跨站脚本攻击漏洞 | |
| CVE-2007-3652 | FaName 'page.php' SQL注入漏洞 | |
| CVE-2007-3651 | hotsscripts FaName 信息泄露漏洞 | |
| CVE-2007-3650 | myWebland MyBloggie 信息泄露漏洞 | |
| CVE-2007-1899 | myWebland MyBloggie SQL 注入漏洞 | |
| CVE-2008-2812 | Linux kernel 代码问题漏洞 | |
| CVE-2008-2991 | Adobe RoboHelp Server帮助错误日志跨站脚本漏洞 | |
| CVE-2008-2931 | Linux kernel 权限许可和访问控制问题漏洞 | |
| CVE-2008-3097 | Drupal Tinytax taxonomy block Module HTML 注入漏洞 | |
| CVE-2008-3096 | Drupal Outline Designer Module 'outline_designer.module' 安全绕过漏洞 |
Showing top 20 of 43 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2008-2244
No comments yet