UBUNTU-CVE-2017-3157

By exploiting the way Apache OpenOffice before 4.1.4 renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrieved by the attacker by, e.g., using hidden sections to store the information, tricking the user in...

CVE-2017-3157

By exploiting the way Apache OpenOffice before 4.1.4 renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrieved by the attacker by, e.g., using hidden sections to store the information, tricking the user in...

Apache OpenOffice -- multiple vulnerabilities

The Apache Openofffice project reports: CVE-2017-3157: Arbitrary file disclosure in Calc and Writer By exploiting the way OpenOffice renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrieved by the attacke...

PT-2008-4872 · Microsoft · Office Excel

Name of the Vulnerable Software and Affected Versions: Microsoft Excel versions 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 Description: The issue arises from improper validation of data in the VBA Performance Cache when processing an Office document with an embedded object. This allows remote...

Microsoft Publisher memory corruption

.PUB files memory corruption on embedded objects parsing...

Adobe Flash Player 89.0.x - .SWF File DeclareFunction2 ActionScript Tag Remote Code Execution

Adobe Flash Player 89.0.x - .SWF File DeclareFunction2 ActionScript Tag Remote Code Execution source: https://www.securityfocus.com/bid/28694/info Adobe Flash Player is prone to a remote code-execution vulnerability when handling certain embedded ActionScript objects. An attacker may exploit this...

Microsoft Office memory corruption

Memory corruption on malformed embedded objects...

CVE-2003-1477

CVE-2003-1477 affects MAILsweeper for SMTP versions 4.3.6 and 4.3.7. A remote attacker can trigger a DoS by sending a PowerPoint attachment that is corrupt or contains embedded objects, causing CPU exhaustion and making the server unresponsive. Documents confirm the vulnerable product and the DoS...

Microsoft Windows OLE Automation memory corruption

Memory corruption on embedded objects processing...

Microsoft Word object pointer memory corruption vulnerability

Overview A memory corruption vulnerability in Microsoft Word could allow a remote attacker to execute arbitrary code with the privileges of the user running Word. Description Microsoft Word contains a memory corruption vulnerability. According to Microsoft Security Bulletin MS06-027:When a user...

Microsoft Internet Explorer fails to properly handle embedded objects

Overview Microsoft Internet Explorer IE does not properly handle embedded dynamic objects. This vulnerability may allow a remote attacker to execute arbitrary code. Description IOleClientSite interface According to Microsoft Security Bulletin MS06-013, The IOleClientSite interface is the primary...

CVE-2005-4851

eZ publish 3.4.4 through 3.7 before 20050722 applies certain permissions on the node level, which allows remote authenticated users to bypass the original permissions on embedded objects in XML fields and read these objects...

VulnCheck KEV: CVE-2005-2127

Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer, as originally...

CVE-2003-1477

MAILsweeper for SMTP 4.3.6 and 4.3.7 allows remote attackers to cause a denial of service CPU consumption via a PowerPoint attachment that either 1 is corrupt or 2 contains "embedded objects."...

wordpad-ie.txt

Georgi Guninski security advisory 7, 2000 Wordpad vulnerability, exploitable also in IE for Win9x Disclaimer: The opinions expressed in this advisory and program are my own and not of any company. The usual standard disclaimer applies, especially the fact that Georgi Guninski is not liable for an...