328 matches found
MS16-042: Description of the security update for Office 2016 for Mac: April 12, 2016
MS16-042: Description of the security update for Office 2016 for Mac: April 12, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see...
MS16-004: Security Update for Microsoft Office to Address Remote Code Execution (3124585) (Mac OS X)
The version of Microsoft Office installed on the remote Mac OS X host is affected by multiple remote code execution vulnerabilities due to improper handling of objects in memory. A remote attacker can exploit these vulnerabilities by convincing a user to open a specially crafted file in Microsoft...
Microsoft OneNote 2 0 1 3 null pointer read or cause RCE-vulnerability warning-the black bar safety net
The problem exists Software: One Note 2 0 1 3 Operating systemname: Microsoft Windows 7 Professional Operating systemversion: 6.1.7601 Service Pack 1 Build 7 6 0 1 Manufacturer: Microsoft Corporation According to WinDBG! exploitable extensions, Microsoft OneNote 2 0 1 3 There is at least one deni...
Microsoft OneNote Privilege Elevation Vulnerability (3104540)
This host is missing an important security update according to Microsoft Bulletin MS15-116. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
MS15-116: Security Update for Microsoft Office to Address Remote Code Execution (3104540)
The remote Windows host has a version of Microsoft Office, Access, Excel, InfoPath, OneNote, PowerPoint, Project, Publisher, Visio, Word, Excel Viewer, Word Viewer, SharePoint Server, Office Compatibility Pack, Office Web Apps, Skype for Business, or Lync installed that is affected by multiple...
Microsoft Office CVE-2015-2503 Privilege Escalation Vulnerability
Description Microsoft Office is prone to a privilege-escalation vulnerability. An attacker can leverage this issue to execute arbitrary code with elevated privileges in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions...
Microsoft OneNote memory corruption
Memory corruption on OneNote files parsing...
Microsoft OneNote Detection
Binary data onenoteinstalled.nbin...
Microsoft OneNote Remote Code Execution Vulnerability (2977201)
This host is missing an important security update according to Microsoft Bulletin MS14-048 SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...
CVE-2014-2815
Microsoft OneNote 2007 SP3 allows remote attackers to execute arbitrary code via a crafted OneNote file that triggers creation of an executable file in a startup folder, aka "OneNote Remote Code Execution Vulnerability."...
Remote code execution
Microsoft OneNote 2007 SP3 allows remote attackers to execute arbitrary code via a crafted OneNote file that triggers creation of an executable file in a startup folder, aka "OneNote Remote Code Execution Vulnerability."...
CVE-2014-2815
CVE-2014-2815 affects Microsoft OneNote 2007 SP3. A crafted OneNote file can trigger execution of an arbitrary program by creating an executable in a startup folder, enabling remote code execution under the current user. CVSS v3.1 vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (base 8.8). Remediatio...
CVE-2014-2815
Microsoft OneNote 2007 SP3 allows remote attackers to execute arbitrary code via a crafted OneNote file that triggers creation of an executable file in a startup folder, aka "OneNote Remote Code Execution Vulnerability."...
August 2014 Security Updates
Today, as part of Update Tuesday, we released nine securityupdates – two rated Critical and seven rated Important – to address 37 Common Vulnerabilities & Exposures CVEs in SQL Server, OneNote, SharePoint, .NET, Windows and Internet Explorer IE. We encourage you to apply all of these updates, but...
Microsoft OneNote File Processing CVE-2014-2815 Remote Code Execution Vulnerability
Description Microsoft OneNote is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsof...
MS14-048: Vulnerability in OneNote Could Allow Remote Code Execution (2977201)
The remote host is running a version of Microsoft OneNote that is affected by a remote code execution vulnerability. By convincing a user to open a specially crafted OneNote file, a remote attacker can create an executable file in a Startup folder and thereby execute arbitrary code with current...
Advance Notification Service for the August 2014 Security Bulletin Release
Today, we provide advance notification for the release of nine Security Bulletins. Two of these are rated Critical, and the remaining seven are rated Important in severity. These Updates are for SQL Server, SharePoint, OneNote, .NET, Microsoft Windows, and Internet Explorer. As per our usual...
Microsoft Office OneNote 2010 Crash PoC
No description provided by source. Title : Microsoft Office OneNote 2010 WriteAV Vulnerability Version : Microsoft Office professional Plus 2010 Date : 2012-11-19 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG...
CVE-2013-0086
Microsoft OneNote 2010 SP1 does not properly determine buffer sizes during memory allocation, which allows remote attackers to obtain sensitive information via a crafted OneNote file, aka "Buffer Size Validation Vulnerability."...
Design/Logic Flaw
Microsoft OneNote 2010 SP1 does not properly determine buffer sizes during memory allocation, which allows remote attackers to obtain sensitive information via a crafted OneNote file, aka "Buffer Size Validation Vulnerability."...