CVE-2014-1809
The CVE-2014-1809 entry affects the MSCOMCTL common controls library used by Microsoft Office 2007 SP3, 2010 SP1/SP2, and 2013 Gold/SP1/RT/RT SP1. The root cause is improper ASLR handling in MSCOMCTL, enabling a remote attacker to bypass ASLR via a crafted web page, as reported and exploited in t...