Microsoft Office CVE-2018-0851 Memory Corruption Vulnerability

Description Microsoft Office is prone to a memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

CVE-2012-0182

Microsoft Word 2007 SP2 and SP3 does not properly handle memory during the parsing of Word documents, which allows remote attackers to execute arbitrary code via a crafted document, aka "Word PAPX Section Corruption Vulnerability."...

CVE-2011-3412

Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect memory handling, aka "Publisher Memory Corruption Vulnerability."...

CVE-2011-1980

Untrusted search path vulnerability in Microsoft Office 2003 SP3 and 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .ppt, or .xls file, aka "Office Component Insecure Library Loading...

CVE-2011-1990

CVE-2011-1990 affects Microsoft Excel 2007 SP2, Excel in Office 2007 SP2, Excel Viewer SP2, Office Compatibility Pack SP2, and Excel Services on Office SharePoint Server 2007 SP2. The vulnerability arises from improper validation of the sign of an unspecified array index, allowing remote code exe...

CVE-2011-0097

Integer underflow in Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary cod...

CVE-2010-3937

CVE-2010-3937 affects Microsoft Exchange Server 2007 SP2 on x64. The vulnerability is in RPC processing that allows a remote authenticated attacker to trigger a denial of service, causing an infinite loop and MSExchangeIS outage. Multiple sources (MS10-106) indicate this can be exploited via spec...

Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow

Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-microsoft-office-word-sprmcmajority-buffer-overflow/...

Microsoft Office PowerPoint 2007 DLL Hijacking Exploit (rpawinet.dll)

Exploit for windows platform in category local exploits ===================================================================== Microsoft Office PowerPoint 2007 DLL Hijacking Exploit rpawinet.dll ===================================================================== / Exploit Title: Microsoft Office...

Microsoft Word RTF解析引擎远程内存破坏漏洞（MS10-056）

BUGTRAQ ID: 42132 CVE ID: CVE-2010-1901 Word是微软Office套件中的文字处理工具。 在处理包含有某些控制字的RTF文档时，RTF解析引擎可能错误的从RTF文件读取值，导致内存破坏。成功利用此漏洞的攻击者可以获得与本地用户相同的权限。 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Word 2007 SP2 Microsoft Word 2003 SP3 Microsoft Word 2002 SP3 临时解决方法： 以纯文本格式阅读电子邮件。...

Microsoft Office COM对象验证远程代码执行漏洞（MS10-036）

BUGTRAQ ID: 40574 CVE ID: CVE-2010-1263 Microsoft Office是非常流行的办公软件套件。 Office中的组件在实例化对象时没有充分地验证COM对象，用户受骗打开了恶意的Excel、PowerPoint、Publisher、Visio 或Word文档就会导致执行任意代码。 Microsoft Office XP SP3 Microsoft Office 2007 SP2 Microsoft Office 2007 SP1 Microsoft Office 2003 Service Pack 3 临时解决方法：...