8 matches found
Microsoft Works and Office WkImgSrv.dll ActiveX Control Code Execution (CVE-2008-1898)
A vulnerability has been reported in Microsoft Works 7 and Microsoft Office 2003 and 2007. The vulnerability is due to a boundary error while handling an overly large argument. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that would pas...
Microsoft Works 7 WkImgSrv.dll WKsPictureInterface() ActiveX Exploit
No description provided by source. $Id: msworkswkspictureinterface.rb 10477 2010-09-25 11:59:02Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Microsoft Works 7 WkImgSrv.dll WKsPictureInterface() ActiveX Exploit
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft Works 7...
Microsoft Works 7 WkImgSrv.dll WKsPictureInterface() ActiveX Code Execution
The Microsoft Works ActiveX control WkImgSrv.dll could allow a remote attacker to execute arbitrary code on a system. By passing a negative integer to the WksPictureInterface method, an attacker could execute arbitrary code on the system with privileges of the victim. Change 168430090 /0X0A0A0A0A...
DSquare Exploit Pack: D2SEC_WORKS7
Name| d2secworks7 ---|--- CVE| CVE-2008-1898 Exploit Pack| D2ExploitPack Description| Microsoft Works 7 WkImgSrv.dll ActiveX Remote Code Execution Vulnerability Notes|...
CVE-2008-1898
CVE-2008-1898 affects the WkImgSrv.dll ActiveX control (WksPictureInterface) in Microsoft Works 7 and Microsoft Office 2003/2007. A boundary/argument handling flaw allows remote code execution or browser crash when an invalid WksPictureInterface value is processed, typically via a crafted web pag...
CVE-2008-1898
A certain ActiveX control in WkImgSrv.dll 7.03.0616.0, as distributed in Microsoft Works 7 and Microsoft Office 2003 and 2007, allows remote attackers to execute arbitrary code or cause a denial of service browser crash via an invalid WksPictureInterface property value, which triggers an improper...
CVE-2008-1898
creationtimestamp| type| source ---|---|--- 2008-04-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5460 2008-05-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5530 2010-09-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16649 2018-05-29...