5 matches found
EUVD-2025-209090
Dovecot has provided a script to use for attachment to text conversion. This script unsafely handles zip-style attachments. Attacker can use specially crafted OOXML documents to cause unintended files on the system to be indexed and subsequently ending up in FTS indexes. Do not use the provided...
Microsoft Office Outlook Arbitrary Code Execution Vulnerability
Microsoft Outlook is an e-mail client software bundled with the Office suite from Microsoft USA. The software manages e-mail, contacts, calendars, and more. An arbitrary code execution vulnerability exists in Microsoft Outlook. A remote attacker can exploit this vulnerability to execute arbitrary...
Microsoft Word Viewer Arbitrary Code Execution Vulnerability
Microsoft Word Viewer is a set of free Office Word document viewer from Microsoft USA. An arbitrary code execution vulnerability exists in Microsoft Word Viewer. A remote attacker can exploit this vulnerability to execute arbitrary code via specially crafted Office documents...
CVE-2016-0021
Microsoft InfoPath 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...
CVE-2016-0053
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 2013 SP1 allow remote attackers to execut...