24 matches found
Exploit for Integer Overflow or Wraparound in Microsoft
CVE-2023-21716 — Microsoft Word RTF fonttbl Heap Corruption RC...
VulnCheck KEV: CVE-2023-21716
Microsoft Word Remote Code Execution Vulnerability...
Exploit for Improper Input Validation in Microsoft
CVE-2024-21413 - Expect Script POC Microsoft Outlook Leak cre...
Exploit for Integer Overflow or Wraparound in Microsoft
CVE-2023-21716...
Exploit for Integer Overflow or Wraparound in Microsoft
CVE-2023-21716exploit test of ex...
Exploit for Integer Overflow or Wraparound in Microsoft
CVE-2023-21716 RTF Crash POC Python 3.11...
Security Updates for Microsoft Office Online Server (February 2023)
The Microsoft Office Web Apps installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - A remote code execution vulnerability. An unauthenticated attacker could send a malicious e-mail containing an RTF payload that would allow them...
Security Updates for Microsoft SharePoint Server 2016 (Language Pack (February 2023))
The Microsoft SharePoint Server 2016 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
Security Updates for Microsoft SharePoint Server 2019 (February 2023)
The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
CVE-2023-21716
creationtimestamp| type| source ---|---|--- 2023-02-15 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=970 2023-02-16 12:47:40+00:00| seen| https://t.me/kasperskyb2b/458 2023-03-06 03:10:02+00:00| published-proof-of-concept| https://t.me/crackcodes/2708 2023-03-06...
Update now! February's Patch Tuesday tackles three zero-days
The Patch Tuesday roundup from Microsoft for February 2023 includes three zero-days. Not exactly what we had in mind for Valentine's Day. Microsoft classifies a vulnerability as a zero-day if it is publicly disclosed or actively exploited with no official fix available. As far as we can tell, onl...
Security Updates for Microsoft SharePoint Server 2016 (February 2023)
The Microsoft SharePoint Server 2016 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
Security Updates for Microsoft SharePoint Server 2019 (February 2023)
The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
Security Updates for Microsoft SharePoint Server Subscription Edition (February 2023)
The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitra...
Security Updates for Microsoft SharePoint Foundation 2013 (February 2023)
The Microsoft SharePoint Foundation 2013 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
CVE-2023-21716 Microsoft Word Remote Code Execution Vulnerability
...
CVE-2023-21716
CVE-2023-21716 corresponds to a Microsoft Word/Office remote code execution vulnerability. A heap corruption flaw resides in Word’s wwlib when parsing RTF font tables with an excessive number of fonts in the fonttbl, causing an out-of-bounds write that can lead to arbitrary code execution when a ...
CVE-2023-21716 Microsoft Word Remote Code Execution Vulnerability
...
Description of the security update for SharePoint Enterprise Server 2016 Language Pack: February 14, 2023 (KB5002325)
Description of the security update for SharePoint Enterprise Server 2016 Language Pack: February 14, 2023 KB5002325 Summary This security update resolves a Microsoft SharePoint Server elevation of privilege vulnerability and Microsoft Word remote code execution vulnerability. To learn more about...
Description of the security update for SharePoint Enterprise Server 2013: February 14, 2023 (KB5002312)
Description of the security update for SharePoint Enterprise Server 2013: February 14, 2023 KB5002312 Summary This security update resolves a Microsoft SharePoint Server elevation of privilege vulnerability and Microsoft Word remote code execution vulnerability. To learn more about the...