Microsoft PowerPoint 2016 RCE Vulnerability (KB4484393)

This host is missing an important security update according to Microsoft KB4484393 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Dec 2020)

This host is missing an important security update according to Microsoft Office Click-to-Run updates. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Microsoft PowerPoint 2010 RCE Vulnerability (KB4484372)

This host is missing an important security update according to Microsoft KB4484372 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Description of the security update for PowerPoint 2013: December 8, 2020

Description of the security update for PowerPoint 2013: December 8, 2020 Summary This security update resolves Microsoft PowerPoint remote code execution vulnerabilities. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2020-17124. Note To apply th...

Description of the security update for PowerPoint 2010: December 8, 2020

Description of the security update for PowerPoint 2010: December 8, 2020 Summary This security update resolves Microsoft PowerPoint remote code execution vulnerabilities. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2020-17124. Note To apply th...

Description of the security update for PowerPoint 2016: December 8, 2020

Description of the security update for PowerPoint 2016: December 8, 2020 Summary This security update resolves Microsoft PowerPoint remote code execution vulnerabilities. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2020-17124. Note To apply th...

Microsoft PowerPoint Remote Code Execution Vulnerability

...

Microsoft Office PowerPoint Security Vulnerability

Microsoft Office PowerPoint is a software used to create, presentations PPT by Microsoft Corporation USA. A security vulnerability exists in Microsoft Office PowerPoint. The following products and editions are affected:Microsoft PowerPoint 2016 64-bit edition,Microsoft PowerPoint 2010 Service Pac...

PT-2020-5239 · Microsoft · Office Powerpoint

Name of the Vulnerable Software and Affected Versions: Microsoft PowerPoint affected versions not specified Description: The issue is related to insufficient input validation in Microsoft PowerPoint, which can be exploited to gain access to sensitive information, execute arbitrary code, or cause ...

KLA12023 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code...

Security Updates for Microsoft PowerPoint Products (December 2020)

The Microsoft PowerPoint Products are missing a security update. It is, therefore, affected by the following vulnerability: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2020-17124 C Tenable Network...

December 1, 2020, update for Office 2016 (KB4486716)

December 1, 2020, update for Office 2016 KB4486716 This article describes update 4486716 for Microsoft Office 2016 that was released on December 1, 2020.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply...

Digitally Signed Bandook Trojan Reemerges in Global Spy Campaign

A wave of targeted cyberattack campaigns bent on espionage is cresting around the globe, using a strain of a 13-year old backdoor trojan named Bandook. According to Check Point Research, Bandook was last spotted being used in 2015 and 2017/2018, in the “Operation Manul” and “Dark Caracal”...

PowerPoint 2003/2007/2010 Silent Builder Exploit

The exploit allows you to convert EXE & JAR to .PPS its coded 100% from scratch and used by private method to assure a great stability and lasting FUD time. You are able to attach it to the most e-mail providers nowadays everyone uses Microsoft Office so it gives a huge chance of success. This...

CVE-2020-1904

A path validation issue in WhatsApp for iOS prior to v2.20.61 and WhatsApp Business for iOS prior to v2.20.61 could have allowed for directory traversal overwriting files when sending specially crafted docx, xlsx, and pptx files as attachments to messages...

A week in security (September 28 – October 4)

Last week on Malwarebytes Labs, we dug into what happens when card fraud comes calling, we gave a rundown on some novel ransomware attacks that took advantage of smart coffee makers, and we introduced VideoBytes, our new, monthly series in which well provide video coverage of some of the...

August 4, 2020, update for PowerPoint 2010 (KB4092435)

August 4, 2020, update for PowerPoint 2010 KB4092435 This article describes update 4092435 for Microsoft PowerPoint 2010 that was released on August 4, 2020. Be aware that the update on the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2010. It doesn't...

Office8570

This is a Microsoft PowerPoint presentation file .ppt that contains a malicious payload. The file is encoded with a password, and the presentation itself contains a malicious VBA Visual Basic for Applications macro that can be used to deliver a payload. The presentation contains a slide layout th...

The vulnerability in the `filter/source/msfilter/msdffimp.cxx` component of the OpenOffice.org office software package, LibreOffice, allows a malicious actor to gain unauthorized access to confidential data, cause service failures, or compromise data integrity.

The vulnerability of the filter/source/msfilter/msdffimp.cxx component in the OpenOffice.org office software package, part of the LibreOffice suite, is related to errors in number processing. Exploiting this vulnerability could allow an attacker to gain unauthorized access to confidential data,...

Description of the security update for Office 2013: June 9, 2020

Description of the security update for Office 2013: June 9, 2020 Summary This update resolves a security feature bypass vulnerability that exists when Outlook or relevant product fails to enforce security settings configured on a system. To learn more about the vulnerability, see Microsoft Common...