VYPR
Unrated severityNVD Advisory· Published Oct 9, 2012· Updated Jun 16, 2026

CVE-2012-2528

CVE-2012-2528

Description

Use-after-free vulnerability in Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; Word Automation Services on Microsoft SharePoint Server 2010; and Office Web Apps 2010 SP1 allows remote attackers to execute arbitrary code via a crafted RTF document, aka "RTF File listid Use-After-Free Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:microsoft:office_compatibility_pack:*:sp2:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office_compatibility_pack:*:sp2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:office_web_apps:2010:sp1:*:*:*:*:*:*
  • Microsoft/Word5 versions
    cpe:2.3:a:microsoft:word:2003:sp3:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:microsoft:word:2003:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:word:2007:sp2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:word:2007:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:word:2010:sp1:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:a:microsoft:word_automation_services:-:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:word_viewer:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.