The vulnerability of the Microsoft Office software suite, the Office Online Server web-based software, PowerPoint for Mac presentation preparation software, Office Web Apps Server, Microsoft SharePoint Server, and the Microsoft Office Web Apps software suite allows a perpetrator to execute arbitrary code.

The vulnerabilities of the Microsoft Office suite, the Office Online Server web-based software, PowerPoint for Mac presentation preparation software, Office Web Apps Server, Microsoft SharePoint Server, and the Microsoft Office Web Apps suite are related to improper access to objects in memory...

A week in security (Jun 12 – Jun 18)

Last week was very busy for the Labs, with a look at so-called numeric tech support scams, a visit to the huge Infosec Europe conference, an exploration of Mac Malware as a Service, and a walk through the myths of online bullying. Elsewhere: A huge click-farm is busted Jaff Ransomware is thwarted...

CVE-2017-8513

A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability"...

CVE-2017-8513

A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability"...

Remote code execution

A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability"...

CVE-2017-8513

A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability"...

CVE-2017-8513

CVE-2017-8513 is a remote code execution vulnerability in Microsoft PowerPoint (Office suite) caused by improper handling of objects in memory. CVSSv3 base score 7.8 (HIGH) with local attack vector, user interaction required. MITRE/attack details are not specified in the provided documents, and e...

Microsoft PowerPoint Remote Code Execution Vulnerability (CNVD-2017-13138)

Microsoft PowerPoint is a document presentation tool in the Office suite from Microsoft USA. A remote code execution vulnerability exists in Microsoft PowerPoint. A remote attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service in the context of the curren...

Security Update for Microsoft Office Products (June 2017)

The Microsoft Office application installed on the remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - Multiple remote code execution vulnerabilities exist in Microsoft Office due to improper validation of input before loading dynamic link...

Microsoft PowerPoint Remote Code Execution Vulnerability (KB3127888)

This host is missing an important security update according to Microsoft KB3127888 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Microsoft PowerPoint Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

Microsoft PowerPoint CVE-2017-8513 Remote Code Execution Vulnerability

Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

Zusy Malware Installs Via Mouseover – No Clicking Required

Researchers are warning of several recent spam campaigns delivering PowerPoint files that when opened contain a mouseover link that installs a variant of the Zusy malware. The malware is novel because it does not rely on macros, JavaScript or VBA macros to be enabled for the dropper file to...

Beware! This Microsoft PowerPoint Hack Installs Malware Without Requiring Macros

"Disable macros and always be extra careful when you manually enable it while opening Microsoft Office Word documents." You might have heard of above-mentioned security warning multiple times on the Internet as hackers usually leverage this decade old macros-based hacking technique to hack...

PowerPoint Malicious Hover Exploit

There exists a malicious downloader vulnerability in Microsoft Office PowerPoint. This is because of the way PowerPoint presentation format handles link hover. A successful attack could lead to malicious files being downloaded...

MarkLogic MarkLogic Antenna House DMC HTMLFilter Heap Buffer Overflow Vulnerability

MarkLogic MarkLogic is a database software from MarkLogic Corporation, USA. The software is characterized by hierarchical storage, dual-temporal and scalability.Antenna House DMC HTMLFilter is one of the HTML generic generator libraries developed by Antenna House, Inc. in the United States. A hea...

CVE-2017-0265

Microsoft PowerPoint for Mac 2011 allows a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-0254 and CVE-2017-0264...

CVE-2017-0264

Microsoft PowerPoint for Mac 2011 allows a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-0254 and CVE-2017-0265...

CVE-2017-0264

Microsoft PowerPoint for Mac 2011 allows a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-0254 and CVE-2017-0265...

Remote code execution

Microsoft PowerPoint for Mac 2011 allows a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-0254 and CVE-2017-0264...