VYPR
Unrated severityNVD Advisory· Published May 9, 2012· Updated Jun 16, 2026

CVE-2012-0167

CVE-2012-0167

Description

Heap-based buffer overflow in the Office GDI+ library in Microsoft Office 2003 SP3 and 2007 SP2 and SP3 allows remote attackers to execute arbitrary code via a crafted EMF image in an Office document, aka "GDI+ Heap Overflow Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Microsoft/Office4 versions
    cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2007:sp2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*
    • (no CPE)range: 2003 SP3, 2007 SP2 and SP3

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.