Lucene search
K

15 matches found

Positive Technologies
Positive Technologies
added 2024/04/30 12:0 a.m.4 views

PT-2024-12555 · Document Foundation · Libreoffice

Name of the Vulnerable Software and Affected Versions: The Document Foundation Libreoffice version 7.4.7 Description: An issue in The Document Foundation Libreoffice allows a remote attacker to cause a denial of service via a crafted .ppt file. Recommendations: For version 7.4.7, consider avoidin...

6.8AI score
Exploits0References10
VulnCheck KEV
VulnCheck KEV
added 2023/07/16 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-34960

A command injection vulnerability in the wsConvertPpt component of Chamilo v1.11. up to v1.11.18 allows attackers to execute arbitrary commands via a SOAP API call with a crafted PowerPoint name...

9.8CVSS7.7AI score0.99397EPSS
Exploits9References1
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.3 views

PT-2023-25076 · Chamilo · Chamilo

Name of the Vulnerable Software and Affected Versions: Chamilo versions 1.11. through 1.11.18 Description: A command injection issue in the wsConvertPpt component allows attackers to execute arbitrary commands via a SOAP API call with a crafted PowerPoint name. Recommendations: For Chamilo versio...

10CVSS9.9AI score0.99397EPSS
Exploits9References22
BDU FSTEC
BDU FSTEC
added 2023/01/04 12:0 a.m.4 views

The vulnerability of the UAX200.dll library in the Corel Presentations presentation preparation and viewing software allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the UAX200.dll library in Corel Presentations’ presentation preparation and viewing software is related to reading data beyond the buffer boundaries. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information through a specially...

5.5CVSS6.1AI score0.01533EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/14 12:0 a.m.7 views

The vulnerability of the IBJPG2.FLT library in the Corel Presentations preparation and presentation software allows a hacker to execute arbitrary code.

The vulnerability of the IBJPG2.FLT library in the Corel Presentations preparation and presentation software relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the context of the current user,...

9.3CVSS7.8AI score0.02266EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/10/01 7:15 p.m.5 views

CVE-2021-38104

IPPP72.FLT in Corel Presentations 2020 20.0.0.200 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of this issue...

5.5CVSS5.8AI score0.01533EPSS
Exploits0References2
CNVD
CNVD
added 2017/09/21 12:0 a.m.2 views

Memory Corruption Vulnerability in WPS Demo kso Module

WPS Office is an office software suite developed independently by Kingsoft Corporation. A memory corruption vulnerability exists in the kso module of WPS Presentation wpp.exe in WPS when parsing a specific ppt file, which can be exploited by an attacker to cause a denial of service or execute...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2016/05/26 7:25 p.m.7 views

apache-poi: denial of service in HSLFSlideShow via corrupted PPT file

A denial of service flaw was found in the way the HSLFSlideShow class implementation in Apache POI handled certain PPT files. A remote attacker could submit a specially crafted PPT file that would cause Apache POI to hang indefinitely...

5CVSS7.4AI score0.07922EPSS
Exploits0References4
Prion
Prion
added 2014/10/22 2:55 p.m.29 views

Code injection

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow remote attackers to execute arbitrary code via a crafted OLE object, as exploited in the wild in October 2014 with a crafted...

9.3CVSS8AI score0.77553EPSS
Exploits11References8Affected Software3
Cvelist
Cvelist
added 2014/10/22 2:0 p.m.43 views

CVE-2014-6352

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow remote attackers to execute arbitrary code via a crafted OLE object, as exploited in the wild in October 2014 with a crafted...

7.3AI score0.77553EPSS
Exploits11References8
ATTACKERKB
ATTACKERKB
added 2014/10/22 12:0 a.m.58 views

CVE-2014-6352

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow remote attackers to execute arbitrary code via a crafted OLE object, as exploited in the wild in October 2014 with a crafted...

9.3CVSS7.9AI score0.77553EPSS
In wildExploits11References10
Prion
Prion
added 2010/02/10 6:30 p.m.24 views

Buffer overflow

Buffer overflow in Microsoft Office PowerPoint 2002 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint File Path Handling Buffer Overflow Vulnerability."...

9.3CVSS8.2AI score0.22456EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2010/02/10 6:30 p.m.21 views

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "OEPlaceholderAtom Use After Free Vulnerability."...

9.3CVSS8AI score0.21221EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2010/02/10 6:0 p.m.66 views

CVE-2010-0029

CVE-2010-0029 is a remote-code-execution vulnerability in Microsoft Office PowerPoint 2002 SP3 caused by a buffer/stack overflow when parsing crafted PowerPoint files (PowerPoint File Path Handling Buffer Overflow). The connected reports confirm this is part of a family of PowerPoint vulnerabilit...

9.3CVSS7.7AI score0.22456EPSS
Exploits1References4Affected Software1
Check Point Advisories
Check Point Advisories
added 2008/05/29 12:0 a.m.10 views

Microsoft PowerPoint TxMasterStyle10Atom Processing Code Execution (MS08-051; CVE-2008-1455)

Microsoft PowerPoint is a popular presentation program. A remote code execution vulnerability has been identified in Microsoft PowerPoint. The vulnerability is due to a memory calculation error in Microsoft PowerPoint when parsing bullet list values in specially crafted PowerPoint files. A remote...

6.8CVSS7.2AI score0.25513EPSS
Exploits0
Rows per page
Query Builder