CVE-2004-0963

Name of the Vulnerable Software and Affected Versions: Microsoft Word versions prior to the fixed version

Description: The issue is related to a buffer overflow in Microsoft Word, which can be triggered by certain unexpected values in a .doc file. This includes an offset that triggers an out-of-bounds memory access and a certain value that causes a large memory copy due to an integer conversion error. The buffer overflow can cause a denial of service, resulting in an application exception, and potentially allow the execution of arbitrary code in winword.exe.

Recommendations: For Microsoft Word 2002 (10.6612.6714) SP3 and possibly other affected versions, update to a version that contains a fix for this issue to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.