Unrated severityNVD Advisory· Published May 4, 2007· Updated Apr 23, 2026

CVE-2007-2496

Description

The WordOCX ActiveX control in WordViewer.ocx 3.2.0.5 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) GotoPage, (6) Save, (7) SaveWebFile, (8) HttpDownloadFile, (9) Open, (10) OpenWebFile, (11) SaveAs, or (12) ShowWordStandardDialog property value.

Affected products

Office Ocx/Word Viewer Ocx
cpe:2.3:a:office_ocx:word_viewer_ocx:3.2.0.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

moaxb.blogspot.com/2007/05/moaxb-03-wordviewerocx-32-multiple_03.htmlnvd
osvdb.org/34334nvd
secunia.com/advisories/25100nvd
www.securityfocus.com/bid/23784nvd
www.vupen.com/english/advisories/2007/1634nvd
exchange.xforce.ibmcloud.com/vulnerabilities/34027nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000