CVE-2008-2244

Name of the Vulnerable Software and Affected Versions: Microsoft Office Word 2002 SP3

Description: A remote code execution issue exists in the way Microsoft Word handles specially crafted Word files, which could allow an attacker to take complete control of an affected system if a user opens a maliciously crafted file. This issue has been exploited in the wild. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations: For Microsoft Office Word 2002 SP3, avoid opening specially crafted Word files until a fix is available. As a temporary workaround, consider restricting the use of Microsoft Word to minimize the risk of exploitation.