328 matches found
CVE-2013-0086
Microsoft OneNote 2010 SP1 does not properly determine buffer sizes during memory allocation, which allows remote attackers to obtain sensitive information via a crafted OneNote file, aka "Buffer Size Validation Vulnerability."...
Microsoft OneNote Information Disclosure Vulnerability (2816264)
This host is missing an important security update according to Microsoft Bulletin MS13-025. OpenVAS Vulnerability Test $Id: secpodms13-025.nasl 6074 2017-05-05 09:03:14Z teissa $ Microsoft OneNote Information Disclosure Vulnerability 2816264 Authors: Thanga Prakash S Copyright: Copyright c 2013...
CVE-2013-0086
Microsoft OneNote 2010 SP1 is affected by CVE-2013-0086 due to a buffer size validation flaw during memory allocation while parsing OneNote files. The root cause is improper buffer size handling, which can lead to information disclosure when a crafted OneNote file is opened. Affected product: One...
Microsoft OneNote information leakage
Information leakage on OneNote files parsing...
CVE-2013-0086
Microsoft OneNote 2010 SP1 does not properly determine buffer sizes during memory allocation, which allows remote attackers to obtain sensitive information via a crafted OneNote file, aka "Buffer Size Validation Vulnerability."...
Microsoft OneNote Detection (Windows SMB Login)
Detects the installed version of Microsoft OneNote. The script logs in via smb, and detect the version of Microsoft OneNote on remote host and sets the KB. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Microsoft OneNote Information Disclosure Vulnerability (2816264)
This host is missing an important security update according to Microsoft Bulletin MS13-025. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft OneNote CVE-2013-0086 Information Disclosure Vulnerability
Description Microsoft OneNote is prone to an information-disclosure vulnerability. An attacker can exploit this issue to disclose sensitive information such as the username and password of configured accounts. Information obtained may aid in further attacks. Technologies Affected Microsoft OneNot...
MS13-025: Vulnerability in Microsoft OneNote Could Allow Information Disclosure (2816264)
The version of Microsoft OneNote running on the remote host is affected by a memory allocation flaw. By convincing a user to open a specially crafted OneNote file, a remote attacker can exploit this to gain access to sensitive information. C Tenable Network Security, Inc. include'compat.inc'; if...
Microsoft Office OneNote Parsing Memory Information Disclosure (MS13-025; CVE-2013-0086)
An information disclosure vulnerability exists in the way that Microsoft OneNote allocates memory from parsing a specially crafted OneNote .ONE file...
MS13-025: Vulnerability in Microsoft OneNote could allow information disclosure: March 12, 2013
Resolves a vulnerability in Microsoft OneNote that could allow information disclosure. This security update was released on March 12, 2013.INTRODUCTIONMicrosoft has released security bulletin MS13-025. To view the complete security bulletin, visit one of the following Microsoft websites: Home...
Microsoft Office OneNote 2010 - Crash (PoC)
Microsoft Office OneNote 2010 - Crash PoC Title : Microsoft Office OneNote 2010 WriteAV Vulnerability Version : Microsoft Office professional Plus 2010 Date : 2012-11-19 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP S...
Microsoft Office OneNote 2010 - Crash (PoC)
Title : Microsoft Office OneNote 2010 WriteAV Vulnerability Version : Microsoft Office professional Plus 2010 Date : 2012-11-19 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Bug : ---- memory corruption during...
CVE-2011-0794
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5.0 allows local users to affect confidentiality, integrity, and availability, related to File ID SDK. NOTE: the previous information was obtained from the April 2011 CPU. Oracle has not...
Buffer overflow
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5.0 allows local users to affect confidentiality, integrity, and availability, related to File ID SDK. NOTE: the previous information was obtained from the April 2011 CPU. Oracle has not...
CVE-2011-0794
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5.0 allows local users to affect confidentiality, integrity, and availability, related to File ID SDK. NOTE: the previous information was obtained from the April 2011 CPU. Oracle has not...
Insomnia : ISVA-100216.1 - Windows URL Handling Vulnerability
Insomnia Security Vulnerability Advisory: ISVA-100216.1 Name: Windows URL Handling Vulnerability Released: 16 February 2010 Vendor Link: http://www.microsoft.com/ Affected Products: Windows 2000, Windows XP, Windows 2003, Windows Vista Original Advisory:...
Microsoft Office OneNote URL处理远程代码执行漏洞(MS08-055)
BUGTRAQ ID: 31067 CVE ID:CVE-2008-3007 CNCVE ID:CNCVE-20083007 Microsoft Office OneNote是一款Microsoft Office 系统的一个集成部分,用于帮助管理信息过载,更加轻松地共享信息,并且更加高效地与他人协作的程序。 Microsoft Office处理使用OneNote协议处理器onenote://的URL存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 构建特殊的onenote:// URL可触发此漏洞。目前没有详细漏洞细节提供。 Microsoft OneNote 2007...
CVE-2008-3007
Argument injection vulnerability in a URI handler in Microsoft Office XP SP3, 2003 SP2 and SP3, 2007 Office System Gold and SP1, and Office OneNote 2007 Gold and SP1 allow remote attackers to execute arbitrary code via a crafted onenote:// URL, aka "Uniform Resource Locator Validation Error...
Microsoft Office Remote Code Execution Vulnerabilities (955047)
This host is missing critical security update according to Microsoft Bulletin MS08-055. OpenVAS Vulnerability Test $Id: secpodms08-055900046.nasl 5863 2017-04-05 07:38:11Z antu123 $ Description: Microsoft Office Remote Code Execution Vulnerabilities 955047 Authors: Chandan S Copyright: Copyright ...