1602 matches found
Design/Logic Flaw
Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse pptimpconv.dll that is located in the same folder as a .odp, .pot, .potm, .potx, .ppa, .pps, .ppsm,...
CVE-2010-3141
CVE-2010-3141 describes an Untrusted Search Path (DLL hijacking) vulnerability in Microsoft PowerPoint 2010. An attacker could trigger arbitrary code execution by placing aTrojan horse pptimpconv.dll in the same folder as an affected file type (e.g., .ppt, .pptx, .odp, etc.). The root cause is un...
CVE-2010-3142
Microsoft Office PowerPoint 2007 contains an Untrusted search path (insecure library loading) vulnerability allowing local users, and possibly remote attackers, to hijack DLLs via a Trojan horse rpawinet.dll located in the same folder as specific PowerPoint-related files (.odp, .pothtml, .potm, ....
CVE-2010-3141
Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse pptimpconv.dll that is located in the same folder as a .odp, .pot, .potm, .potx, .ppa, .pps, .ppsm,...
CVE-2010-3142
Untrusted search path vulnerability in Microsoft Office PowerPoint 2007 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse rpawinet.dll that is located in the same folder as a .odp, .pothtml, .potm, .potx, .ppa, .ppam,...
Microsoft Office PowerPoint 2007 12.0.4518 DLL Hijacking Exploit
/ Microsoft Office PowerPoint 2007 v12.0.4518 pp4x322.dll DLL Hijacking Exploit Vendor: Microsoft Corp. Product Web Page: http://www.microsoft.com Affected Version: 12.0.4518.1014 MSO 12.0.4518.1014 Summary: Microsoft PowerPoint is a presentation program by Microsoft. It is part of the Microsoft...
Microsoft Office PowerPoint 2007 DLL Hijacking Exploit
/ Exploit Title: Microsoft Office PowerPoint 2007 DLL Hijacking Exploit rpawinet.dll Date: August 25, 2010 Author: storm [email protected] Version: 2007 12.0.6535.5002 SP2 Tested on: Windows Vista SP2 http://www.gonullyourself.org/ gcc -shared -o rpawinet.dll PowerPoint-DLL.c .odp, .pothtm...
Microsoft Power Point 2010 DLL Hijacking Exploit
/ Exploit Title: Microsoft PowerPoint 2010 DLL Hijacking Exploit pptimpconv.dll Date: 24/08/2010 Author: TheLeader Email: gsog2009 a7 hotmail d0t com Software Link: http://office.microsoft.com/en-us/powerpoint/ Version: 14.0.4760.1000 Tested on: Windows 7 x86 6.1.7600 Compile and rename to...
Microsoft Office PowerPoint 2007 v12.0.4518 (pp4x322.dll) DLL Hijacking Exploit
Summary Microsoft PowerPoint is a presentation program by Microsoft. It is part of the Microsoft Office suite, and runs on Microsoft Windows and Apple's Mac OS X operating system. Description MS PowerPoint 2007 suffers from a dll hijacking vulnerability that enables the attacker to execute...
CentOS 3 / 4 : openoffice.org (CESA-2010:0643)
Updated openoffice.org packages that fix two security issues are now available for Red Hat Enterprise Linux 3 and 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
CVE-2010-2936
Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...
Heap overflow
simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PowerPoi...
Integer overflow
Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...
CVE-2010-2935
CVE-2010-2935 and CVE-2010-2936 affect OpenOffice.org Impress (simpress.bin) on OpenOffice.org 2.x/3.x up to 3.3. The issues arise from integer truncation and related heap-based buffer overflow when processing dictionary properties and polygons in PowerPoint documents, enabling denial of service ...
CVE-2010-2936
Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...
CVE-2010-2936
OpenOffice.org Impress (OOo 2.x–3.x up to 3.3) is affected by CVE-2010-2936 due to an integer truncation/heap-based buffer overflow when processing polygons in PowerPoint-like inputs. An attacker could craft a PPT document to trigger a crash or potentially execute code remotely. Public disclosure...
Microsoft Office PowerPoint 2007 DLL Hijacking Exploit (rpawinet.dll)
Exploit for windows platform in category local exploits ===================================================================== Microsoft Office PowerPoint 2007 DLL Hijacking Exploit rpawinet.dll ===================================================================== / Exploit Title: Microsoft Office...
Microsoft PowerPoint 2007 - rpawinet.dll DLL Hijacking
Microsoft PowerPoint 2007 - rpawinet.dll DLL Hijacking / Exploit Title: Microsoft Office PowerPoint 2007 DLL Hijacking Exploit rpawinet.dll Date: August 25, 2010 Author: storm [email protected] Version: 2007 12.0.6535.5002 SP2 Tested on: Windows Vista SP2 http://www.gonullyourself.org/ gcc...
Microsoft PowerPoint 2007 - 'rpawinet.dll' DLL Hijacking
/ Exploit Title: Microsoft Office PowerPoint 2007 DLL Hijacking Exploit rpawinet.dll Date: August 25, 2010 Author: storm [email protected] Version: 2007 12.0.6535.5002 SP2 Tested on: Windows Vista SP2 http://www.gonullyourself.org/ gcc -shared -o rpawinet.dll PowerPoint-DLL.c .odp, .pothtm...
CVE-2010-2935
simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PowerPoi...