CVE-2017-0194

Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, and Office Compatibility Pack SP2 allow remote attackers to obtain sensitive information from process memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."...

CVE-2017-0194

Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, and Office Compatibility Pack SP2 allow remote attackers to obtain sensitive information from process memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."...

Information disclosure

Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, and Office Compatibility Pack SP2 allow remote attackers to obtain sensitive information from process memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."...

CVE-2017-0194

Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, and Office Compatibility Pack SP2 allow remote attackers to obtain sensitive information from process memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."...

For CVE-2015-2545 vulnerability research and analysis-vulnerability warning-the black bar safety net

1. Overview This is one of the MSOffice vulnerability that allows by using a special Encapsulated PostScript EPSgraphics files for arbitrary code execution. This vulnerability 2015 3 months was found, the vulnerability is not patched case lasted 4 months. After that, Microsoft released a fix...

Microsoft Office Compatibility Pack Information Disclosure Vulnerability (KB3191830)

This host is missing an important security update for Microsoft Office Compatibility Pack according to Microsoft KB3191830. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

KLA11055 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, bypass security restrictions and spoof user interface. Below is a complete list of vulnerabilities: 1. An incorrect handling of...

Sony Playstation 4 (PS4) 3.50 4.07 - WebKit Code Execution (PoC)

Sony Playstation 4 PS4 3.50 4.07 - WebKit Code Execution PoC PS4 4.0x Code Execution ============== This repo is my edit of the 4.0x webkit exploit released by qwertyoruiopz. The edit re-organizes, comments, and adds portability across 3.50 - 4.07 3.50, 3.55, 3.70, 4.00, and of course 4.06/4.07...

Sony Playstation 4 (PS4) 3.50 < 4.07 - WebKit Code Execution (PoC)

PS4 4.0x Code Execution ============== This repo is my edit of the 4.0x webkit exploit released by qwertyoruiopz. The edit re-organizes, comments, and adds portability across 3.50 - 4.07 3.50, 3.55, 3.70, 4.00, and of course 4.06/4.07. The commenting and reorganization was mostly for my own...

The vulnerabilities of the Microsoft Office software package, the Microsoft Word text editor, and the Microsoft Office Compatibility Pack allow a perpetrator to cause a service failure or execute arbitrary code.

The vulnerability of the Microsoft Office software suite, the Microsoft Word text editor, and the Microsoft Office Compatibility Pack is due to an operation that occurs outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code or cause a...

The vulnerability of the Microsoft Office Compatibility Pack, the Microsoft Excel spreadsheet editor, the Microsoft SharePoint Server enterprise application suite, and the Microsoft Excel Viewer allows a perpetrator to trigger a service failure or execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack, the Microsoft Excel spreadsheet editor, the Microsoft SharePoint Server enterprise application, and the Microsoft Excel Viewer viewer arises due to an operation that occurs outside of the buffer in memory. Exploitation of this...

The vulnerabilities of the Microsoft Office Web Apps package, the Microsoft Office Compatibility Pack, the Microsoft Word text editor, the Microsoft SharePoint Server corporate application, and certain Microsoft Office programs allow a perpetrator to cause service interruptions or execute arbitrary code.

The vulnerabilities of the Microsoft Office Web Apps, the Microsoft Office Compatibility Pack, the Microsoft Word text editor, the Microsoft SharePoint Server corporate application, and the Microsoft Office suite are caused by an operation that goes beyond the buffer boundaries in memory...

The vulnerability of Microsoft Excel spreadsheet editors, the Microsoft SharePoint Server corporate application suite, and the Microsoft Office Compatibility Pack compatibility suite allows a perpetrator to obtain confidential information from the process memory.

The vulnerability of Microsoft Excel spreadsheet editors, the Microsoft SharePoint Server corporate application suite, and the Microsoft Office Compatibility Pack relates to the lack of protection for operational data. Exploitation of this vulnerability can allow a malicious actor, operating...

The vulnerability of the Microsoft Office Compatibility Pack allows a perpetrator to trigger a service failure or execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack arises from an operation that occurs outside the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code or trigger a service failure memory corruption using a specially crafted...

MS06-013: Cumulative security update for Internet Explorer

Describes the MS06-013 security update rollup for Internet ExplorerMicrosoft has released security bulletin MS06-013. This security bulletin contains all the relevant information about the security update. This information includes the file manifest information and the deployment options. To view...

coreutils security and bug fix update

8.4-46.0.1 - clean up empty file if cp is failed Orabug 15973168 8.4-46 - pure rebuild to bring back support for aclextendedfilenofollow on x8664 8.4-45 - su: deny killing other processes with root privileges CVE-2017-2616 8.4-44 - fix the functionality of 'sort -h -k ...' in multi-byte locales...

Product update: Virtuozzo 7.0 Update 3 Hotfix 3 (7.0.3-641)

The new packages for Virtuozzo 7.0.3 introducing usability fixes and compatibility with Packet. Vulnerability id: PSBM-62644 Route of container with a host-routed interface was not cleared on source host after migration. Vulnerability id: PSBM-59017 Allowed access to '/dev/kmsg' inside containers...

codeigniter -- multiple vulnerabilities

The CodeIgniter changelog reports: Fixed a header injection vulnerability in common function setstatusheader under Apache thanks to Guillermo Caminer from Flowgate. Fixed byte-safety issues in Encrypt Library DEPRECATED when mbstring.funcoverload is enabled. Fixed byte-safety issues in Encryption...

Important: Red Hat Security Advisory: jboss-ec2-eap security, bug fix, and enhancement update

An update for jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2017-0105

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from out-of-bound memory via a crafted Office...