Lucene search
K

1602 matches found

ThreatPost
ThreatPost
added 2010/08/24 3:7 p.m.11 views

Demo of the Microsoft DLL Hijacking Exploit

In this video, the folks at Offensive Security demonstrated exactly how the Windows DLL-hijacking vulnerability can exploited using Metasploit and a benign PowerPoint slide...

2.5AI score
Exploits0References1
0day.today
0day.today
added 2010/08/24 12:0 a.m.17 views

Microsoft Power Point 2010 DLL Hijacking (pptimpconv.dll) Exploit

Exploit for windows platform in category local exploits ================================================================= Microsoft Power Point 2010 DLL Hijacking pptimpconv.dll Exploit ================================================================= / Exploit Title: Microsoft PowerPoint 2010 DL...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2010/08/24 12:0 a.m.30 views

Microsoft PowerPoint 2010 - 'pptimpconv.dll' DLL Hijacking

/ Exploit Title: Microsoft PowerPoint 2010 DLL Hijacking Exploit pptimpconv.dll Date: 24/08/2010 Author: TheLeader Email: gsog2009 a7 hotmail d0t com Software Link: http://office.microsoft.com/en-us/powerpoint/ Version: 14.0.4760.1000 Tested on: Windows 7 x86 6.1.7600 Compile and rename to...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/08/24 12:0 a.m.9 views

Microsoft PowerPoint 2010 - pptimpconv.dll DLL Hijacking

Microsoft PowerPoint 2010 - pptimpconv.dll DLL Hijacking / Exploit Title: Microsoft PowerPoint 2010 DLL Hijacking Exploit pptimpconv.dll Date: 24/08/2010 Author: TheLeader Email: gsog2009 a7 hotmail d0t com Software Link: http://office.microsoft.com/en-us/powerpoint/ Version: 14.0.4760.1000 Teste...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/08/23 2:29 p.m.3 views

OpenOffice.Org: Integer truncation error by parsing specially-crafted Microsoft PowerPoint document

simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PowerPoi...

9.3CVSS6.4AI score0.07089EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/08/23 2:29 p.m.6 views

OpenOffice.org: Heap-based buffer overflow by parsing specially-crafted Microsoft PowerPoint document

Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...

9.3CVSS6.6AI score0.07089EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2010/08/04 12:0 a.m.43 views

openoffice.org -- Multiple vulnerabilities

OpenOffice.org Security Team reports: Fixed in OpenOffice.org 3.3 CVE-2010-2935 / CVE-2010-2936: Security Vulnerability in OpenOffice.org related to PowerPoint document processing CVE-2010-3450: Security Vulnerability in OpenOffice.org related to Extensions and filter package files CVE-2010-3451 ...

9.3CVSS7.2AI score0.10731EPSS
Exploits2References2
Microsoft Security Update
Microsoft Security Update
added 2010/06/08 5:0 p.m.8 views

Security Update for Microsoft Office PowerPoint 2003 (KB982157)

A security vulnerability exists in Microsoft PowerPoint 2003 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

7.2AI score
Exploits0
Symantec
Symantec
added 2010/06/08 12:0 a.m.22 views

Microsoft Windows COM Object Validation Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious Excel, PowerPoint, Publisher, Visio, Wordpad, or Word file. Successful exploits would allow the attacker to execute arbitrary code in the...

7.9AI score
Exploits0Affected Software19
Metasploit
Metasploit
added 2010/05/14 2:43 a.m.16 views

MS10-004 Microsoft PowerPoint Viewer TextBytesAtom Stack Buffer Overflow

This module exploits a stack buffer overflow vulnerability in the handling of the TextBytesAtom records by Microsoft PowerPoint Viewer. According to Microsoft, the PowerPoint Viewer distributed with Office 2003 SP3 and earlier, as well as Office 2004 for Mac, are vulnerable. NOTE: The vulnerable...

9.3CVSS7.8AI score0.51073EPSS
Exploits8
Packet Storm
Packet Storm
added 2010/05/14 12:0 a.m.42 views

Microsoft PowerPoint Viewer TextBytesAtom Stack Buffer Overflow

$Id: ms10004textbytesatom.rb 9299 2010-05-14 02:43:55Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS0.6AI score0.51073EPSS
Exploits8
securityvulns
securityvulns
added 2010/03/10 12:0 a.m.44 views

CORE-2009-0813: Windows Movie Maker and Microsoft Producer IsValidWMToolsStream() Heap Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Windows Movie Maker and Microsoft Producer IsValidWMToolsStream Heap Overflow 1. Advisory Information Title: Windows Movie Maker and Microsoft Producer...

9.3CVSS7.4AI score0.26636EPSS
Exploits9
Core Security
Core Security
added 2010/03/09 12:0 a.m.21 views

Windows Movie Maker and Microsoft Producer IsValidWMToolsStream() Heap Overflow

Advisory ID Internal CORE-2009-0813 1. Advisory Information Title: Windows Movie Maker and Microsoft Producer IsValidWMToolsStream Heap Overflow Advisory Id: CORE-2009-0813 Advisory URL:http://www.coresecurity.com/content/movie-maker-heap-overflow Date published: 2010-03-09 Date of last update:...

9.3CVSS7.9AI score0.26636EPSS
Exploits9
Check Point Advisories
Check Point Advisories
added 2010/03/08 12:0 a.m.3 views

Microsoft PowerPoint PPT File Parsing Memory Corruption (CVE-2006-3656)

There exists a memory corruption vulnerability in Microsoft PowerPoint. The flaw is caused due to an insufficient checks of a malformed record contained within a PowerPoint file. An attacker can exploit this vulnerability to inject and execute arbitrary code in the security context of the current...

2.6CVSS7.4AI score0.20524EPSS
Exploits1
Saint
Saint
added 2010/03/04 12:0 a.m.28 views

Microsoft Office PowerPoint Viewer TextBytesAtom Record Buffer Overflow

Added: 03/04/2010 CVE: CVE-2010-0033 BID: 38107 OSVDB: 62241 Background Microsoft PowerPoint Viewer 2003 is a free tool which allows viewing of Microsoft PowerPoint presentations without requiring Microsoft PowerPoint itself. Problem A stack overflow vulnerability in the handling of TextBytesAtom...

9.3CVSS6.8AI score0.51073EPSS
Exploits8
Saint
Saint
added 2010/03/04 12:0 a.m.29 views

Microsoft Office PowerPoint Viewer TextBytesAtom Record Buffer Overflow

Added: 03/04/2010 CVE: CVE-2010-0033 BID: 38107 OSVDB: 62241 Background Microsoft PowerPoint Viewer 2003 is a free tool which allows viewing of Microsoft PowerPoint presentations without requiring Microsoft PowerPoint itself. Problem A stack overflow vulnerability in the handling of TextBytesAtom...

9.3CVSS6.8AI score0.51073EPSS
Exploits8
Saint
Saint
added 2010/03/04 12:0 a.m.29 views

Microsoft Office PowerPoint Viewer TextBytesAtom Record Buffer Overflow

Added: 03/04/2010 CVE: CVE-2010-0033 BID: 38107 OSVDB: 62241 Background Microsoft PowerPoint Viewer 2003 is a free tool which allows viewing of Microsoft PowerPoint presentations without requiring Microsoft PowerPoint itself. Problem A stack overflow vulnerability in the handling of TextBytesAtom...

9.3CVSS6.8AI score0.51073EPSS
Exploits8
Saint
Saint
added 2010/03/04 12:0 a.m.24 views

Microsoft Office PowerPoint Viewer TextBytesAtom Record Buffer Overflow

Added: 03/04/2010 CVE: CVE-2010-0033 BID: 38107 OSVDB: 62241 Background Microsoft PowerPoint Viewer 2003 is a free tool which allows viewing of Microsoft PowerPoint presentations without requiring Microsoft PowerPoint itself. Problem A stack overflow vulnerability in the handling of TextBytesAtom...

9.3CVSS6.8AI score0.51073EPSS
Exploits8
seebug.org
seebug.org
added 2010/02/20 12:0 a.m.26 views

Microsoft PowerPoint文件路径解析栈溢出漏洞(MS10-004)

BUGTRAQ ID: 38099 CVE ID: CVE-2010-0029 Microsoft PowerPoint是微软Office套件中的文档演示工具。 PowerPoint在解析PPT文件中的超长文件路径字段时存在栈溢出漏洞,用户受骗打开恶意文件就可能导致执行任意代码。成功利用此漏洞的攻击者便可完全控制受影响的系统。 Microsoft PowerPoint 2002 SP3 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS10-004)以及相应补丁: MS10-004:Vulnerabilities in Microsof...

9.3CVSS6.8AI score0.22456EPSS
Exploits1
seebug.org
seebug.org
added 2010/02/20 12:0 a.m.42 views

Microsoft PowerPoint LinkedSlideAtom堆溢出漏洞(MS10-004)

BUGTRAQ ID: 38101 CVE ID: CVE-2010-0030 Microsoft PowerPoint是微软Office套件中的文档演示工具。 PowerPoint处理特制PPT文件的方式中存在一个堆溢出漏洞,成功利用此漏洞的攻击者可完全控制受影响的系统。 在解析两个相关的PowerPoint记录类型期间会出现这个漏洞。第一个记录类型LinkedSlideAtom用于指定不同幻灯片的协作信息,该记录中的一个字段用于指定文件中所出现的某些记录的数目。负责填充用于存储记录数组的代码在将元素储存到数组中时没有执行任何边界检查,这可能导致堆溢出。 Microsoft...

9.3CVSS6.8AI score0.2467EPSS
Exploits1
Rows per page
Query Builder