CVE-2009-0563

Microsoft Office contains a buffer overflow vulnerability that allows remote attackers to execute code via a Word document with a crafted tag containing an invalid length field. Vendor/Product: Microsoft Office. Added to CISA KEV 2022-06-08; required action: Apply updates per vendor instructions.