CVE-2008-0103

Name of the Vulnerable Software and Affected Versions Microsoft Office versions 2000 SP3, XP SP3, 2003 SP2, and 2004 for Mac

Description The issue allows remote attackers to execute arbitrary code via an Office document that contains a malformed object, related to a memory handling error. If a user opens a specially crafted Microsoft Office document with a malformed object inserted into the document, it could allow remote code execution. An attacker who successfully exploited this issue could take complete control of an affected system, then install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office 2000 SP3, update to a version that fixes the memory handling error to prevent remote code execution. For Microsoft Office XP SP3, update to a version that fixes the memory handling error to prevent remote code execution. For Microsoft Office 2003 SP2, update to a version that fixes the memory handling error to prevent remote code execution. For Microsoft Office 2004 for Mac, update to a version that fixes the memory handling error to prevent remote code execution.