Disappearing bytes: Reverse engineering the MS Office RTF parser

Microsoft Office was a prime target for attacks in 2017. As well as the large number of vulnerabilities discovered and proof-of-concept exploits published, malware authors felt it necessary to prevent detection of 'one-day' and 'old-day' exploits by antivirus software. It also became clear that...

In-depth analysis of Microsoft Office RTF file stack overflow vulnerability, CVE-2 0 1 6-0 0 1 0-a vulnerability warning-the black bar safety net

0×0 1 Summary In this month's Microsoft patch Tuesday, Microsoft fixes 3 Office vulnerability MS16-0 0 4。 This vulnerability is due to MS Office not correctly parse the RTF document caused by a heap overflow vulnerability successful exploitation of this vulnerability may enable an attacker to...

Microsoft Word RTF Control Word Handling Integer Overflow (MS08-072; CVE-2008-4025)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...

CVE-2000-0073

Buffer overflow in Microsoft Rich Text Format RTF reader allows attackers to cause a denial of service via a malformed control word...

CVE-2000-0073

CVE-2000-0073 involves a buffer overflow in the Microsoft Rich Text Format (RTF) reader triggered by a malformed control word, leading to a denial of service. The affected software is the RTF reader component in Microsoft environments. The root cause is a buffer overflow condition, as described i...

CVE-2000-0073

Buffer overflow in Microsoft Rich Text Format RTF reader allows attackers to cause a denial of service via a malformed control word...