Lucene search
K

59 matches found

Prion
Prion
added 2011/12/14 12:55 a.m.22 views

Memory corruption

Microsoft Excel 2003 SP3 and Office 2004 for Mac do not properly handle objects in memory, which allows remote attackers to execute arbitrary code via a crafted Excel spreadsheet, aka "Record Memory Corruption Vulnerability."...

9.3CVSS8AI score0.20786EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2011/12/14 12:0 a.m.70 views

CVE-2011-3403

CVE-2011-3403 affects Microsoft Excel 2003 SP3 and Office 2004 for Mac, where improper handling of in-memory objects during parsing of crafted Excel files enables remote code execution. The vulnerability, dubbed “Record Memory Corruption Vulnerability,” is rated CVSSv2 base 9.3 (Network, single a...

9.3CVSS7.5AI score0.20786EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2011/06/16 8:55 p.m.20 views

CVE-2011-1278

Microsoft Excel 2002 SP3 and Office 2004 for Mac do not properly validate record information during parsing of Excel spreadsheets, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted spreadsheet, aka "Excel WriteAV Vulnerability."...

9.3CVSS7.6AI score0.16968EPSS
Exploits1References4
CVE
CVE
added 2011/06/16 8:21 p.m.54 views

CVE-2011-1278

CVE-2011-1278 affects Microsoft Excel 2002 SP3 and Office 2004 for Mac. The issue arises when parsing Excel record information, where input validation failures can lead to remote code execution or memory corruption via a crafted spreadsheet (Excel WriteAV vulnerability). The vulnerability is tied...

9.3CVSS7.7AI score0.16968EPSS
Exploits1References4Affected Software2
seebug.org
seebug.org
added 2010/11/17 12:0 a.m.50 views

Microsoft Office艺术绘图记录解析内存破坏漏洞(MS10-087)

BUGTRAQ ID: 44656 CVE ID: CVE-2010-3334 Microsoft Office是非常流行的办公软件套件。 Office在解析艺术绘图记录时没有充分地执行验证,如果msofbtSp记录指定了某些标志就可以触发内存破坏,导致执行任意代码。 Microsoft Office XP SP3 Microsoft Office for Mac 2011 Microsoft Office 2010 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Office 2003...

9.3CVSS6.8AI score0.25459EPSS
Exploits2
Symantec
Symantec
added 2010/11/09 12:0 a.m.17 views

Microsoft Office Art Drawing Record Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious Office file. Successfully exploiting this issue would allow the attacker to corrupt memory and execute arbitrary code in the context of the...

8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/10/16 12:0 a.m.64 views

VUPEN Security Research - Microsoft Office Word Document Buffer Overflow Vulnerability (CVE-2010-2748)

VUPEN Security Research - Microsoft Office Word Document Buffer Overflow Vulnerability CVE-2010-2748 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- Microsoft Office Word, included in the Microsoft Office suite, is a powerful authoring program that gives the ability ...

9.3CVSS7.9AI score0.19751EPSS
Exploits1
securityvulns
securityvulns
added 2010/10/16 12:0 a.m.38 views

VUPEN Security Research - Microsoft Office Excel Formula Record Buffer Overflow Vulnerability (CVE-2010-3231)

VUPEN Security Research - Microsoft Office Excel Formula Record Buffer Overflow Vulnerability CVE-2010-3231 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- Microsoft Office Excel is a powerful tool you can use to create and format spreadsheets, and analyze and share...

9.3CVSS7.9AI score0.20648EPSS
Exploits0
NVD
NVD
added 2010/10/13 7:0 p.m.24 views

CVE-2010-3221

Microsoft Word 2002 SP3 and 2003 SP3, Office 2004 for Mac, and Word Viewer do not properly handle a malformed record during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Parsing Vulnerability."...

9.3CVSS7.4AI score0.19751EPSS
Exploits1References3
NVD
NVD
added 2010/10/13 7:0 p.m.27 views

CVE-2010-3216

Microsoft Word 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a crafted Word document containing bookmarks that trigger use of an invalid pointer and memory corruption, aka "Word Bookmarks Vulnerability."...

9.3CVSS7.4AI score0.20833EPSS
Exploits1References4
Prion
Prion
added 2010/10/13 7:0 p.m.19 views

Memory corruption

Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly check an unspecified boundary during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Boundary Check Vulnerability."...

9.3CVSS8AI score0.19751EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2010/10/13 6:0 p.m.65 views

CVE-2010-3221

Microsoft Word Remote Code Execution (CVE-2010-3221) arises from memory corruption when parsing crafted Word documents, allowing remote code execution. Affected products across the Word family include Word 2002 SP3, 2003 SP3, Word Viewer, and Office/Word for Mac variants cited in MS10-079 materia...

9.3CVSS7.5AI score0.19751EPSS
Exploits1References3Affected Software3
Symantec
Symantec
added 2010/10/12 12:0 a.m.46 views

Microsoft Word Uninitialized Pointer (CVE-2010-2747) Remote Code Execution Vulnerability

Description Microsoft Word is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Word file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...

9.3CVSS1.7AI score0.21001EPSS
Exploits1Affected Software2
Symantec
Symantec
added 2010/10/12 12:0 a.m.40 views

Microsoft Excel Out-of-Bounds Memory Write (CVE-2010-3241) Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...

9.3CVSS0.6AI score0.21413EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2010/10/12 12:0 a.m.14 views

Microsoft Excel Ghost Record Type Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability because the applications fails sufficiently validate user-supplied input. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file. Successful exploits can allow attackers...

0.3AI score
Exploits0Affected Software1
seebug.org
seebug.org
added 2010/08/17 12:0 a.m.29 views

Microsoft Word RTF解析引擎远程内存破坏漏洞(MS10-056)

BUGTRAQ ID: 42132 CVE ID: CVE-2010-1901 Word是微软Office套件中的文字处理工具。 在处理包含有某些控制字的RTF文档时,RTF解析引擎可能错误的从RTF文件读取值,导致内存破坏。成功利用此漏洞的攻击者可以获得与本地用户相同的权限。 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Word 2007 SP2 Microsoft Word 2003 SP3 Microsoft Word 2002 SP3 临时解决方法: 以纯文本格式阅读电子邮件。...

9.3CVSS2.1AI score0.19399EPSS
Exploits5
seebug.org
seebug.org
added 2010/08/17 12:0 a.m.37 views

Microsoft Word sprmCMajority记录解析栈溢出漏洞(MS10-056)

BUGTRAQ ID: 42136 CVE ID: CVE-2010-1900 Word是微软Office套件中的文字处理工具。 在解析Word文档中的sprmCMajority记录时,由于处理sprmCMajority sprm组没有对参数执行检查,攻击者可以控制写入到栈缓冲区中的数据数量,触发栈溢出。成功利用此漏洞的攻击者可完全控制受影响的系统。 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Word 2007 SP2 Microsoft Word 2003 SP3 Microsoft Wo...

9.3CVSS1.7AI score0.39813EPSS
Exploits6
Prion
Prion
added 2010/06/08 8:30 p.m.17 views

Memory corruption

Buffer overflow in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed HFPicture 0x866 record, aka "Excel HFPicture Memory Corruption Vulnerability."...

9.3CVSS8.1AI score0.27184EPSS
Exploits8References6Affected Software2
Prion
Prion
added 2010/06/08 8:30 p.m.21 views

Spoofing

Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Excel file, aka "Excel String Variable Vulnerability."...

9.3CVSS8AI score0.21221EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2010/06/08 8:0 p.m.30 views

CVE-2010-1250

Heap-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with malformed 1 EDG 0x88 and 2 Publisher 0x89 records, aka "Excel EDG Memory...

8AI score0.23843EPSS
Exploits0References5
Rows per page
Query Builder