← ExploitWatch
HomeExploited Vulnerabilities

CVE-2009-0563 — Actively Exploited: Office (Microsoft)

Microsoft Office contains a buffer overflow vulnerability that allows remote attackers to execute code via a Word document with a crafted tag containing an invalid length field.

CVE IDCVE-2009-0563
VendorMicrosoft
ProductOffice
Vulnerability nameMicrosoft Office Buffer Overflow Vulnerability
Date added2022-06-08
Remediation due2022-06-22
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMicrosoft Office contains a buffer overflow vulnerability that allows remote attackers to execute code via a Word document with a crafted tag containing an invalid length field.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →