3 matches found
CVE-2014-2815
Microsoft OneNote 2007 SP3 allows remote attackers to execute arbitrary code via a crafted OneNote file that triggers creation of an executable file in a startup folder, aka "OneNote Remote Code Execution Vulnerability."...
CVE-2014-2815
CVE-2014-2815 affects Microsoft OneNote 2007 SP3. A crafted OneNote file can trigger execution of an arbitrary program by creating an executable in a startup folder, enabling remote code execution under the current user. CVSS v3.1 vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (base 8.8). Remediatio...
MS14-048: Vulnerability in OneNote Could Allow Remote Code Execution (2977201)
The remote host is running a version of Microsoft OneNote that is affected by a remote code execution vulnerability. By convincing a user to open a specially crafted OneNote file, a remote attacker can create an executable file in a Startup folder and thereby execute arbitrary code with current...