CVE-2010-2748

Name of the Vulnerable Software and Affected Versions Microsoft Word versions 2002 SP3 Office 2004 for Mac

Description A remote code execution issue exists due to an improper boundary check when parsing a specially crafted Word file. This allows attackers to execute arbitrary code, potentially taking complete control of an affected system. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. The impact may be less severe for users with limited user rights compared to those with administrative rights.

Recommendations For Microsoft Word 2002 SP3, update to a version that properly checks boundaries during Word document parsing to prevent memory corruption. For Office 2004 for Mac, apply the necessary patch or update to handle the improper boundary check when parsing specially crafted Word files.