9 matches found
Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure
Exploit Title: Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.office.com/ Software Link: https://www.office.com/ Details: https://github.com/passtheticket/CVE-2024-38200 Version: Microsoft Office 2019 MSO Build 1808...
Security Updates for Microsoft Office Products C2R (Aug 2024)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2024-38169, CVE-2024-38170,...
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Aug 2024)
This host is missing a critical security update according to Microsoft Office Click-to-Run update August 2024. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...
Security Updates for Microsoft Office Products (August 2024)
The Microsoft Office Products are missing security updates. They are, therefore, affected by a spoofing vulnerability. An attacker can exploit this to gain access to sensitive data via a third party interaction. Note that Nessus has not tested for these issues but has instead relied only on the...
CVE-2024-38200
Microsoft Office Spoofing Vulnerability...
CVE-2024-38200
creationtimestamp| type| source ---|---|--- 2024-08-10 07:42:38+00:00| seen| Telegram/PejxRntyRAocNHvLUV8cSPaUmeP3nZJ2C0hxUTOLqMOlgw 2024-08-10 08:32:13+00:00| seen| https://t.me/thehackernews/5392 2024-08-10 09:24:46+00:00| seen| https://t.me/tengkorakcybercrewz/3428 2024-08-10 09:24:46+00:00|...
Microsoft Warns of Unpatched Office Vulnerability Leading to Data Exposure
Microsoft has disclosed an unpatched zero-day in Office that, if successfully exploited, could result in unauthorized disclosure of sensitive information to malicious actors. The vulnerability, tracked as CVE-2024-38200 CVSS score: 7.5, has been described as a spoofing flaw that affects the...
CVE-2024-38200
CVE-2024-38200 affects Microsoft Office (e.g., Office 2019 MSO Build 1808; Microsoft 365 MSO 2403/16.0.17425.20176) where Office URI schemes (eg, ms-word:ofe|u|http://…) trigger automatic NTLM authentication. The underlying issue is the Office URI handling that can fetch remote documents and caus...
CVE-2024-38200 Microsoft Office Spoofing Vulnerability
...