Unrated severityNVD Advisory· Published Mar 25, 2008· Updated Jun 16, 2026
CVE-2008-1092
CVE-2008-1092
Description
Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:microsoft:word:2000:sp3:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:microsoft:word:2000:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:word:2002:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:word:2003:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:word:2003_sp3:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:word:2007:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:word:2007_sp1:*:*:*:*:*:*:*
- Range: <4.0.9505.0
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.