Lucene search
K

4 matches found

Saint
Saint
added 2009/08/27 12:0 a.m.40 views

Microsoft Office Web Components DataSourceControl ActiveX Control memory allocation

Added: 08/27/2009 CVE: CVE-2009-0562 BID: 35990 OSVDB: 56914 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap memory corruption vulnerability in the OWC10.DataSourceControl ActiveX control allows command execution when a use...

9.3CVSS6.5AI score0.2565EPSS
Exploits4
CVE
CVE
added 2009/08/12 5:0 p.m.128 views

CVE-2009-0562

CVE-2009-0562 describes a heap memory corruption in the Office Web Components ActiveX control (OWC10.DataSourceControl) used by Office XP/2003 Web Components and related components. The vulnerability could allow remote code execution when a user loads a malicious page that loads/unloads the contr...

9.3CVSS7.5AI score0.2565EPSS
Exploits4References4Affected Software3
securityvulns
securityvulns
added 2009/08/12 12:0 a.m.55 views

ZDI-09-055: Microsoft Office OWC10 ActiveX Control Loading and Unloading Heap Corruption Vulnerability

ZDI-09-055: Microsoft Office OWC10 ActiveX Control Loading and Unloading Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-055 August 11, 2009 -- CVE ID: CVE-2009-0562 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel ...

9.3CVSS0.2AI score0.2565EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2009/08/11 12:0 a.m.100 views

MS09-043: Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (957638)

The remote host is running a version of Microsoft Office Web Components that is affected by various flaws that may allow arbitrary code to be run. To succeed, the attacker would have to send specially crafted URLs to a user of the remote computer and have him process it with Microsoft Office Web...

9.3CVSS5.5AI score0.6202EPSS
Exploits27References5
Rows per page
Query Builder