4 matches found
Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerability
Added: 08/24/2009 CVE: CVE-2009-2496 BID: 35991 OSVDB: 56915 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control allows command execution when a user opens a web...
CVE-2009-2496
CVE-2009-2496 : Heap-based/heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control of Microsoft Office Web Components. Exploitation requires a user to load a malicious web page and trigger a specific sequence of method calls, leading to remote code execution. Affected products incl...
ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability
ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-056 August 11, 2009 -- CVE ID: CVE-2009-2496 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel --...
MS09-043: Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (957638)
The remote host is running a version of Microsoft Office Web Components that is affected by various flaws that may allow arbitrary code to be run. To succeed, the attacker would have to send specially crafted URLs to a user of the remote computer and have him process it with Microsoft Office Web...