10 matches found
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption
$Id: ms09043owcmsdso.rb 8686 2010-03-02 07:50:25Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption
This module exploits a memory corruption vulnerability within versions 10 and 11 of the Office Web Component Spreadsheet ActiveX control. This module was based on an exploit found in the wild. This module requires Metasploit: https://metasploit.com/download Current source:...
MS09-043: Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (957638)
The remote host is running a version of Microsoft Office Web Components that is affected by various flaws that may allow arbitrary code to be run. To succeed, the attacker would have to send specially crafted URLs to a user of the remote computer and have him process it with Microsoft Office Web...
CVE-2009-1136
creationtimestamp| type| source ---|---|--- 2009-07-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9163 2010-07-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16537 2018-05-29 15:50:33+00:00| seen|...
DSquare Exploit Pack: D2SEC_OWC
Name| d2secowc ---|--- CVE| CVE-2009-1136 Exploit Pack| D2ExploitPack Description| Microsoft Office Web Components ActiveX msDataSourceObject Code Execution Vulnerability Notes|...
CVE-2009-1136
CVE-2009-1136 affects the Microsoft Office Web Components Spreadsheet ActiveX control (OWC10/OWC11) bundled with Office XP SP3, Office 2003 SP3, and related Web Components/ISA configurations. A crafted call to msDataSourceObject in Internet Explorer allows remote code execution; this vulnerabilit...
VulnCheck KEV: CVE-2009-1136
The Microsoft Office Web Components Spreadsheet ActiveX control aka OWC10 or OWC11, as distributed in Office XP SP3 and Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and...
Microsoft Office Web Components OWC.Spreadsheet Evaluate method vulnerability
Added: 07/14/2009 CVE: CVE-2009-1136 BID: 35642 OSVDB: 55806 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A memory corruption vulnerability allows command execution when a web page passes a specially crafted parameter to the...
Microsoft Office Web Components OWC.Spreadsheet Evaluate method vulnerability
Added: 07/14/2009 CVE: CVE-2009-1136 BID: 35642 OSVDB: 55806 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A memory corruption vulnerability allows command execution when a web page passes a specially crafted parameter to the...
Microsoft Office Web Components OWC.Spreadsheet Evaluate method vulnerability
Added: 07/14/2009 CVE: CVE-2009-1136 BID: 35642 OSVDB: 55806 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A memory corruption vulnerability allows command execution when a web page passes a specially crafted parameter to the...