Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2016/05/11 1:59 a.m.1 views

CVE-2016-0140

Microsoft Office 2007 SP3, Office 2010 SP2, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...

7.8CVSS6.1AI score0.19384EPSS
Exploits1References3
CVE
CVEadded 2016/05/11 1:0 a.m.107 views

CVE-2016-0140

Summary: CVE-2016-0140 is a remote code execution memory corruption flaw in Microsoft Office components including Office 2007 SP3, Office 2010 SP2, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2. The issue arises from improper handling of objects in memory, a...

9.3CVSS7.8AI score0.19384EPSS
Exploits1References3Affected Software3
Tenable Nessus
Tenable Nessusadded 2016/05/10 12:0 a.m.114 views

MS16-054: Security Update for Microsoft Office (3155544)

The version of Microsoft Office installed on the remote Windows host is affected by multiple vulnerabilities : - Multiple remote code execution vulnerabilities exist due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit these vulnerabilities by convincing ...

9.3CVSS8.4AI score0.29354EPSS
Exploits1References5
Symantec
Symantecadded 2016/05/10 12:0 a.m.29 views

Microsoft Office CVE-2016-0140 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in deni...

9.3CVSS0.7AI score0.19384EPSS
Exploits1Affected Software3
Kaspersky
Kasperskyadded 2016/05/10 12:0 a.m.100 views

KLA10804 Code execution vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be exploited remotely via a specially designed content; 2. An...

9.3CVSS8.7AI score0.29354EPSS
Exploits1References28
Check Point Advisories
Check Point Advisoriesadded 2016/04/12 12:0 a.m.4 views

Microsoft Office Memory Corruption (MS16-042: CVE-2016-0139; CVE-2016-0140)

A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to an error in the way Microsoft Office improperly handles objects in memory while parsing specially crafted files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted...

9.3CVSS7.8AI score0.19384EPSS
Exploits2
Source Incite
Source Inciteadded 2016/01/19 12:0 a.m.38 views

SRC-2016-0022 : Microsoft Office Component FSupportSAEXTChar Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

9.3CVSS7.9AI score0.19384EPSS
Exploits1
Rows per page
Query Builder