Unrated severityNVD Advisory· Published May 13, 2008· Updated Jun 16, 2026
CVE-2008-1434
CVE-2008-1434
Description
Use-after-free vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via an HTML document with a large number of Cascading Style Sheets (CSS) selectors, related to a "memory handling error" that triggers memory corruption.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2007:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2007_sp1:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
- cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
- (no CPE)range: 2000, XP SP3, 2003 SP2 and SP3, 2007 Office System SP1 and earlier
cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:*:sp1:*:*:*:*:*
cpe:2.3:a:microsoft:word_viewer:2003:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:word_viewer:2003:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:word_viewer:2003:*:sp3:*:*:*:*:*
Patches
Vulnerability mechanics
References
9- www.securityfocus.com/bid/29105nvdPatch
- secunia.com/advisories/30143nvdVendor Advisory
- www.vupen.com/english/advisories/2008/1504/referencesnvdVendor Advisory
- www.us-cert.gov/cas/techalerts/TA08-134A.htmlnvdUS Government Resource
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- marc.infonvd
- www.securitytracker.com/idnvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-026nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5012nvd
News mentions
0No linked articles in our index yet.