Remote Code Execution Vulnerability in Microsoft Office XP

CVE-2004-0848 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames.

Learn more about our Cis Benchmark Audit For Microsoft Office.