CVE-2004-0571 - Caressing Kum

Description

Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths which allows remote attackers to execute arbitrary code via a .wri .rtf and .doc file sent by email or malicious web site aka \Table Conversion Vulnerability\ a different vulnerability than CVE-2004-0901.

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/18337 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A685 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4328 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3743 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3416 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1976 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1959 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1417 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1168 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-041