CVE-2009-0088

CVE Database · CVE-2009-0088

CVE-2009-0088

· N/AModified

CVSS v3.1

N/A

EPSS

28.45%

Published

Apr 15, 2009

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The WordPerfect 6.x Converter (WPFT632.CNV, 1998.1.27.0) in Microsoft Office Word 2000 SP3 and Microsoft Office Converter Pack does not properly validate the length of an unspecified string, which allows remote attackers to execute arbitrary code via a crafted WordPerfect 6.x file, related to an unspecified counter and control structures on the stack, aka "Word 2000 WordPerfect 6.x Converter Stack Corruption Vulnerability."

Weaknesses (CWE)

CWE-20

Affected Products (12)

microsoft · office_converter_packvulnerable

microsoft · office_wordvulnerable

microsoft · windows_2000vulnerable

microsoft · windows_server_2003vulnerable