Lucene search
K

4 matches found

Saint
Saint
added 2009/08/24 12:0 a.m.44 views

Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerability

Added: 08/24/2009 CVE: CVE-2009-2496 BID: 35991 OSVDB: 56915 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control allows command execution when a user opens a web...

9.3CVSS6.6AI score0.29462EPSS
Exploits4
CVE
CVE
added 2009/08/12 5:0 p.m.108 views

CVE-2009-2496

CVE-2009-2496 : Heap-based/heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control of Microsoft Office Web Components. Exploitation requires a user to load a malicious web page and trigger a specific sequence of method calls, leading to remote code execution. Affected products incl...

9.3CVSS8AI score0.29462EPSS
Exploits4References4Affected Software5
securityvulns
securityvulns
added 2009/08/12 12:0 a.m.68 views

ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability

ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-056 August 11, 2009 -- CVE ID: CVE-2009-2496 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel --...

9.3CVSS0.1AI score0.29462EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2009/08/11 12:0 a.m.100 views

MS09-043: Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (957638)

The remote host is running a version of Microsoft Office Web Components that is affected by various flaws that may allow arbitrary code to be run. To succeed, the attacker would have to send specially crafted URLs to a user of the remote computer and have him process it with Microsoft Office Web...

9.3CVSS5.5AI score0.6202EPSS
Exploits27References5
Rows per page
Query Builder