VYPR
Unrated severityNVD Advisory· Published Aug 14, 2007· Updated Jun 16, 2026

CVE-2007-2224

CVE-2007-2224

Description

Object linking and embedding (OLE) Automation, as used in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Office 2004 for Mac, and Visual Basic 6.0 allows remote attackers to execute arbitrary code via the substringData method on a TextNode object, which causes an integer overflow that leads to a buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Microsoft/Office2 versions
    cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
    • (no CPE)range: 2004 for Mac
  • cpe:2.3:a:microsoft:visual_basic:6.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:visual_basic:6.0:*:*:*:*:*:*:*
    • (no CPE)range: 6.0
  • Range: 2000 SP4, XP SP2, Server 2003 SP1 and SP2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.