Lucene search
K

18 matches found

The Hacker News
The Hacker News
added 2022/07/06 9:51 a.m.77 views

Bitter APT Hackers Continue to Target Bangladesh Military Entities

Military entities located in Bangladesh continue to be at the receiving end of sustained cyberattacks by an advanced persistent threat tracked as Bitter. "Through malicious document files and intermediate malware stages the threat actors conduct espionage by deploying Remote Access Trojans,"...

9.3CVSS0.3AI score0.95121EPSS
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.29 views

Microsoft Office Memory Corruption Vulnerability

Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful exploitation allows for remote code execution in the context of the current user. This vulnerability is known to be chained with CVE-2018-0798...

9.3CVSS8.1AI score0.95121EPSS
In wildExploits7
Check Point Advisories
Check Point Advisories
added 2019/07/10 12:0 a.m.5 views

Microsoft Office Remote Code Execution (CVE-2018-0798)

A stack-based buffer overflow vulnerability exists in Microsoft Office. A remote, unauthenticated attacker can exploit this vulnerability by supplying a maliciously crafted OLE file to the affected target...

9.3CVSS4.3AI score0.95121EPSS
Exploits0
Circl
Circl
added 2019/07/03 9:31 p.m.21 views

CVE-2018-0798

creationtimestamp| type| source ---|---|--- 2019-07-03 21:31:08+00:00| exploited| https://t.me/informationsecuritychannel/29050 2019-07-04 20:31:13+00:00| exploited| https://t.me/antichat/5730 2019-07-04 22:14:02+00:00| exploited| https://t.me/canyoupwnme/5705 2019-08-06 09:07:33+00:00| seen|...

9.3CVSS7.5AI score0.95121EPSS
Exploits0References10
Microsoft KB
Microsoft KB
added 2018/01/19 8:0 a.m.852 views

Description of the security update for Office 2016: January 9, 2018

Description of the security update for Office 2016: January 9, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about the vulnerabilities, go to the following Common...

9.3CVSS9AI score0.95121EPSS
Exploits7
Microsoft KB
Microsoft KB
added 2018/01/19 8:0 a.m.535 views

Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: January 9, 2018

Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: January 9, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about the...

9.3CVSS9.1AI score0.95121EPSS
Exploits7
Vulnrichment
Vulnrichment
added 2018/01/10 1:0 a.m.13 views

CVE-2018-0798

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability"...

7.8AI score0.95121EPSS
Exploits0References4
CVE
CVE
added 2018/01/10 1:0 a.m.1314 views

CVE-2018-0798

The CVE-2018-0798 entry concerns a memory corruption vulnerability in Microsoft Office (Word/Equation Editor) across Office 2007–2016. The root cause is how certain objects are handled in memory, enabling remote code execution when a specially crafted file is opened. Connected documents indicate ...

9.3CVSS8.8AI score0.95121EPSS
In wildExploits0References5Affected Software3
ATTACKERKB
ATTACKERKB
added 2018/01/10 12:0 a.m.54 views

CVE-2018-0798

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka “Microsoft Office Memory Corruption Vulnerability”. Recent assessments: Assessed Attacke...

9.3CVSS8AI score0.95121EPSS
In wildExploits0References5
OpenVAS
OpenVAS
added 2018/01/10 12:0 a.m.279 views

Microsoft Office 2010 Service Pack 2 Remote Code Execution Vulnerabilities (KB4011610)

This host is missing an important security update according to Microsoft KB4011610 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS8.6AI score0.95121EPSS
Exploits7References3
OpenVAS
OpenVAS
added 2018/01/10 12:0 a.m.385 views

Microsoft Office 2013 Service Pack 1 Remote Code Execution Vulnerabilities (KB4011580)

This host is missing an important security update according to Microsoft KB4011580 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS8.6AI score0.95121EPSS
Exploits7References3
OpenVAS
OpenVAS
added 2018/01/10 12:0 a.m.90 views

Microsoft Office Compatibility Pack Service Pack 3 Multiple RCE Vulnerabilities (KB4011607)

This host is missing a critical security update according to Microsoft KB4011607 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.7AI score0.95121EPSS
Exploits7References3
OpenVAS
OpenVAS
added 2018/01/10 12:0 a.m.279 views

Microsoft Word 2010 Service Pack 2 Multiple RCE Vulnerabilities (KB4011659)

This host is missing a critical security update according to Microsoft KB4011659 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.7AI score0.95121EPSS
Exploits7References3
OpenVAS
OpenVAS
added 2018/01/10 12:0 a.m.115 views

Microsoft Office Word Multiple Vulnerabilities (KB4011651)

This host is missing a critical security update according to Microsoft KB4011651. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.6AI score0.95121EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2018/01/09 8:0 a.m.134 views

Description of the security update for Office 2010: January 9, 2018

Description of the security update for Office 2010: January 9, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about the vulnerabilities, go to the following Common...

9.3CVSS8.9AI score0.95121EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2018/01/09 8:0 a.m.956 views

Description of the security update for Office 2013: January 9, 2018

Description of the security update for Office 2013: January 9, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about the vulnerabilities, go to the following Common...

9.3CVSS9AI score0.95121EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2018/01/09 12:0 a.m.409 views

Security Updates for Microsoft Office Compatibility SP3 (January 2018)

The Microsoft Office Compatibility Pack products installed on the remote host are missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in...

9.3CVSS9.1AI score0.95121EPSS
Exploits7References18
Tenable Nessus
Tenable Nessus
added 2018/01/09 12:0 a.m.120 views

Security Updates for Microsoft Word Products (January 2018)

The Microsoft Words Products are missing security updates. It is therefore affected by multiple issues involving handling of Office and RTF Rich Text Format files. If successfully exploited, an attacker could execute code in the context of the current user. C Tenable Network Security, Inc...

9.3CVSS8.3AI score0.95121EPSS
Exploits0References13
Rows per page
Query Builder