25 matches found
CVE-2009-0226
CVE-2009-0226 is a memory corruption/stack-based buffer overflow in Microsoft PowerPoint's legacy 4.0 file format handling. The vulnerability allows remote code execution when a user opens a specially crafted PowerPoint 4.0 sound-data stream, affecting PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3....
IBM ISS: Adobe JBIG2 exploits being spammed out
PDFs containing exploits for the recent 0-day vulnerability in Acrobat Reader are now being actively sent out through spambots. The folks at the IBM ISS X-Force say they’re seeing infected PDFs being spammed out and that it looks like the traffic is mainly coming from Taiwan, though those may be...
F-Secure多个杀毒产品LHA及RAR文档绕过安全扫描漏洞
F-Secure Internet Gatekeeper和F-Secure Anti-Virus都是芬兰的一家杀毒软件厂商所发布的杀毒产品。 F-Secure的这些防病病毒工具处理畸形LHA和RAR文档时存在漏洞,远程攻击者可能利用此漏洞绕过扫描检测。 如果LHA和RAR文件设置了畸形的文档文件头的话,这些文件就可能绕过F-Secure产品的杀毒扫描,导致在用户系统上执行非授权操作。 F-Secure Anti-Virus for Workstations 7.00 F-Secure Anti-Virus for Windows Servers 7.00 F-Secure...
CVE-2007-1117
Unspecified vulnerability in Publisher 2007 in Microsoft Office 2007 allows remote attackers to execute arbitrary code via unspecified vectors, related to a "file format vulnerability." NOTE: this information is based upon a vague pre-advisory with no actionable information. However, the advisory...
CVE-2007-1117
Technical details are not publicly available in the provided documents. Monitor for updates.