CVE-2012-0182

Name of the Vulnerable Software and Affected Versions Microsoft Word versions 2007 SP2 through 2007 SP3

Description A remote code execution issue exists due to improper memory handling during the parsing of Word documents, allowing attackers to execute arbitrary code via a crafted document. This could enable an attacker to take complete control of an affected system, potentially leading to the installation of programs, viewing, changing, or deleting data, or creating new accounts with full user rights.

Recommendations For Microsoft Word 2007 SP2, update to a version that is not affected by this issue. For Microsoft Word 2007 SP3, update to a version that is not affected by this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.