Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2010/10/20 12:0 a.m.38 views

MS10-056 / MS10-057: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2269638 / 2269707) (Mac OS X)

The remote Mac OS X host is running a version of Microsoft Office that is affected by several vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted Word or Excel file, these issues could be leveraged to execute arbitrary code subject to the user's...

9.3CVSS6.1AI score0.39813EPSS
Exploits16References6
seebug.org
seebug.org
added 2010/08/17 12:0 a.m.58 views

Microsoft Word RTF解析引擎堆溢出漏洞(MS10-056)

BUGTRAQ ID: 42133 CVE ID: CVE-2010-1902 Word是微软Office套件中的文字处理工具。 在处理RTF文档中的某些绘图对象控制字时,Word未经长度检查便将属性值拷贝到了堆缓冲区上,触发堆溢出。成功利用此漏洞的攻击者可以获得与本地用户相同的权限。 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Word 2007 SP2 Microsoft Word 2003 SP3 Microsoft Word 2002 SP3 临时解决方法: 以纯文本格式阅读电子邮件。...

9.3CVSS6.8AI score0.23415EPSS
Exploits1
CVE
CVE
added 2010/08/11 6:0 p.m.66 views

CVE-2010-1902

CVE-2010-1902 describes a remote-code-execution flaw in Microsoft Word’s RTF parsing engine. The vulnerability is triggered by crafted RTF data, specifically via drawing object control words that copy properties into a heap buffer without bounds checking, causing a heap buffer overflow. Affected ...

9.3CVSS7.9AI score0.23415EPSS
Exploits1References3Affected Software1
Check Point Advisories
Check Point Advisories
added 2010/08/10 12:0 a.m.9 views

Microsoft Word RTF Data Parsing Buffer Overflow (MS10-056; CVE-2010-1902)

Microsoft Word is a popular word processing software. A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to insufficient data validation by Microsoft Office Word when handling rich text data. A remote attacker could trigger this flaw by convincin...

9.3CVSS7.2AI score0.23415EPSS
Exploits1
Rows per page
Query Builder