Buffer overflow in Microsoft Office 2000 SP3, XP SP3, and other versions and packages, allows user-assisted attackers to execute arbitrary code via a routing slip that is longer than specified by the provided length field, as exploited by malware such as TROJ_MDROPPER.BH and Trojan.PPDropper.E in attacks against PowerPoint.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Office | Microsoft | 2000-sp3 (including) | 2000-sp3 (including) |
| Office | Microsoft | 2003-sp1 (including) | 2003-sp1 (including) |
| Office | Microsoft | 2003-sp2 (including) | 2003-sp2 (including) |
| Office | Microsoft | 2004 (including) | 2004 (including) |
| Office | Microsoft | v.x (including) | v.x (including) |
| Office | Microsoft | xp-sp3 (including) | xp-sp3 (including) |
| Works | Microsoft | 2000 (including) | 2000 (including) |
| Works | Microsoft | 2001 (including) | 2001 (including) |
| Works | Microsoft | 2002 (including) | 2002 (including) |
| Works | Microsoft | 2003 (including) | 2003 (including) |
| Works | Microsoft | 2004 (including) | 2004 (including) |
| Works | Microsoft | 2005 (including) | 2005 (including) |
| Works | Microsoft | 2006 (including) | 2006 (including) |