Microsoft Office Buffer Overflow Vulnerability

Known Exploited Vulnerability

CVE-2009-0563, Microsoft Office Buffer Overflow Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Microsoft Office contains a buffer overflow vulnerability that allows remote attackers to execute code via a Word document with a crafted tag containing an invalid length field.

The following remediation steps are recommended / required by June 22, 2022: Apply updates per vendor instructions.