Lucene search
K

52 matches found

OSV
OSV
added 2024/12/18 11:15 p.m.5 views

CVE-2024-41165

A library injection vulnerability exists in Microsoft Word 16.83 for macOS. A specially crafted library can leverage Word's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of th...

9.1CVSS5.8AI score0.00722EPSS
Exploits1References2
OSV
OSV
added 2017/03/17 12:59 a.m.3 views

CVE-2017-0105

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from out-of-bound memory via a crafted Office...

5.5CVSS5.8AI score0.30411EPSS
Exploits0References3
Symantec
Symantec
added 2017/03/14 12:0 a.m.43 views

Microsoft Office CVE-2017-0031 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

9.3CVSS1.1AI score0.26316EPSS
Exploits0Affected Software4
Symantec
Symantec
added 2017/03/14 12:0 a.m.40 views

Microsoft Office CVE-2017-0030 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

9.3CVSS0.7AI score0.25985EPSS
Exploits0Affected Software6
NVD
NVD
added 2016/12/20 6:59 a.m.19 views

CVE-2016-7290

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial of service...

7.1CVSS6.6AI score0.22765EPSS
Exploits1References3
OSV
OSV
added 2016/12/20 6:59 a.m.5 views

CVE-2016-7291

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial of service...

7.1CVSS5.8AI score0.22765EPSS
Exploits1References3
Prion
Prion
added 2016/12/20 6:59 a.m.21 views

Information disclosure

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word Viewer, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial...

5.8CVSS6.9AI score0.22585EPSS
Exploits0References3Affected Software5
NVD
NVD
added 2016/11/10 6:59 a.m.15 views

CVE-2016-7234

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Excel for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web...

9.3CVSS7.8AI score0.22285EPSS
Exploits0References4
NVD
NVD
added 2016/11/10 6:59 a.m.17 views

CVE-2016-7233

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2013 SP1, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory o...

6.5CVSS6.2AI score0.22384EPSS
Exploits0References4
Prion
Prion
added 2016/11/10 6:59 a.m.20 views

Memory corruption

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...

9.3CVSS8AI score0.24859EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2016/11/10 6:16 a.m.26 views

CVE-2016-7235

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...

7.7AI score0.19641EPSS
Exploits0References3
CVE
CVE
added 2016/11/10 6:16 a.m.81 views

CVE-2016-7235

CVE-2016-7235 is a memory-corruption vulnerability in Microsoft Office components that allows remote code execution via a crafted Office document. Affected products include Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, and Office Compatibility Pack SP3. The Roo...

9.3CVSS7.6AI score0.19641EPSS
Exploits0References3Affected Software5
CVE
CVE
added 2016/11/10 6:16 a.m.94 views

CVE-2016-7233

CVE-2016-7233 is an information-disclosure/out-of-bounds-read vulnerability in multiple Microsoft Office components (e.g., Word 2007, Office 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Viewer, Office Web Apps 2010 SP2, SharePoint 2013 components, and Office Automation Services). A craft...

6.5CVSS6.3AI score0.22384EPSS
Exploits0References4Affected Software9
CVE
CVE
added 2016/11/10 6:16 a.m.76 views

CVE-2016-7232

CVE-2016-7232 is a memory corruption vulnerability in Microsoft Office components (Word 2007; Office 2010 SP2; Word 2010 SP2; Word for Mac 2011; Office Compatibility Pack SP3) that allows remote code execution via a crafted Office document. Affected systems are mitigated by MS16-133 security upda...

9.3CVSS7.6AI score0.24859EPSS
Exploits0References4Affected Software4
NVD
NVD
added 2016/10/14 2:59 a.m.13 views

CVE-2016-7193

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps...

9.3CVSS7.8AI score0.57705EPSS
Exploits0References4
Prion
Prion
added 2016/10/14 2:59 a.m.29 views

Memory corruption

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps...

9.3CVSS8AI score0.57705EPSS
Exploits0References3Affected Software7
CVE
CVE
added 2016/10/14 1:0 a.m.955 views

CVE-2016-7193

Summary of CVE-2016-7193 : A memory corruption flaw in Microsoft Office’s handling of RTF documents allows remote code execution on affected Office products (Word 2007 SP2, Office 2010 SP2, Word 2013/2016, Word for Mac variants, Office Web Apps Server, etc.). The root cause is a vulnerability in ...

9.3CVSS7.8AI score0.57705EPSS
In wildExploits0References4Affected Software4
Cvelist
Cvelist
added 2016/10/14 1:0 a.m.35 views

CVE-2016-7193

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps...

7.9AI score0.57705EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2016/10/11 12:0 a.m.6 views

PT-2016-3358 · Microsoft · Sharepoint Server +8

Name of the Vulnerable Software and Affected Versions: Microsoft Office versions 2007 SP2 through 2016 Microsoft Word versions 2007 SP2 through 2016 Microsoft Word for Mac versions 2011 through 2016 Office Compatibility Pack version SP3 Word Viewer affected versions not specified Word Automation...

10CVSS8.2AI score0.57705EPSS
Exploits0References14
Source Incite
Source Incite
added 2016/09/21 12:0 a.m.34 views

SRC-2016-0042 : Microsoft Office Word OneTableDocumentStream Integer Underflow Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose information on vulnerable installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

7.1CVSS7.1AI score0.22765EPSS
Exploits1
Rows per page
Query Builder