20 matches found
Microsoft Office Products Insecure Library Loading Vulnerability
microsoft products is prone to insecure library loading vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Office Groove 2007 DLL Hijacking Exploit (mso.dll)
No description provided by source. / Greetz to :b0nd, Fbih2s,r45c4l,Charles ,j4ckh4x0r, punter,eberly, Charles , Dinesh Arora, Anirban ,Ganesha, Dinesh Arora Site : www.beenuarora.com Exploit Title: Microsoft Office Groove 2007 DLL Hijacking Date: 25/08/2010 Author: Beenu Arora Tested on: Windows...
CVE-2011-1892
CVE-2011-1892 targets SharePoint-related products (SharePoint Server/Workspace/ Groove components, Office Web Apps, Windows SharePoint Services, etc.). The flaw is an XXE-style vulnerability where Web Parts containing XML classes referencing external entities allow remote authenticated users to r...
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
This host is missing an important security update according to Microsoft Bulletin MS11-074. OpenVAS Vulnerability Test $Id: secpodms11-074.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities 2451858 Authors: Rachana Shetty Copyright: Copyright c...
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
This host is missing an important security update according to Microsoft Bulletin MS11-074. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Groove Remote Code Execution Vulnerability (2494047)
This host is missing a critical security update according to Microsoft Bulletin MS11-016. OpenVAS Vulnerability Test $Id: secpodms11-016.nasl 6538 2017-07-05 11:38:27Z cfischer $ Microsoft Groove Remote Code Execution Vulnerability 2494047 Authors: Madhuri D Copyright: Copyright c 2011 SecPod,...
Microsoft Fills Windows, Office Holes with March Patch Release
Microsoft Corp. issued their monthly security bulletins on Tuesday, with fixes for four known vulnerabilities in the company’s Windows operating system, Office suite and Remote Desktop Connection products. The March patch release included three bulletins: MS11-015, 016 and 017. Only one, MS11-015...
Microsoft Groove 2007 mso.dll Insecure Library Loading (MS11-016; CVE-2010-3146)
Microsoft Office Groove 2007 is a collaboration software program for working on a broad range of project activities, from simple document collaboration to custom solutions integrated with business processes. A remote code execution vulnerability has been reported in the way that Microsoft Groove...
CVE-2010-3146
Multiple untrusted search path vulnerabilities in Microsoft Groove 2007 SP2 allow local users to gain privileges via a Trojan horse 1 mso.dll or 2 GroovePerfmon.dll file in the current working directory, as demonstrated by a directory that contains a Groove vCard .vcg or Groove Tool Archive .gta...
Microsoft Office Groove 2007 DLL Hijacking Exploit
Exploit for windows platform in category local exploits ================================================== Microsoft Office Groove 2007 DLL Hijacking Exploit ================================================== / Greetz to :b0nd, Fbih2s,r45c4l,Charles ,j4ckh4x0r, punter,eberly, Charles , Dinesh...
Microsoft Office Groove 2007 - 'mso.dll' DLL Hijacking
/ Greetz to :b0nd, Fbih2s,r45c4l,Charles ,j4ckh4x0r, punter,eberly, Charles , Dinesh Arora, Anirban ,Ganesha, Dinesh Arora Site : www.beenuarora.com Exploit Title: Microsoft Office Groove 2007 DLL Hijacking Date: 25/08/2010 Author: Beenu Arora Tested on: Windows XP SP3 , Microsoft Office Groove...
Microsoft Products GDI Plus Code Execution Vulnerabilities (957488)
This host is missing a critical security update according to Microsoft Bulletin MS09-062. OpenVAS Vulnerability Test $Id: secpodms09-062.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft Products GDI Plus Code Execution Vulnerabilities 957488 Authors: Sharath S Updated to Check Visio Viewer 2007 - B...
Integer overflow
Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and SP3, Offic...
Heap overflow
Heap-based buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and...
PT-2009-4908 · Microsoft · Works +26
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6 SP1 Windows XP versions SP2 and SP3 Office XP version SP3 Office 2003 version SP3 2007 Microsoft Office System versions SP1 and SP2 Office Project 2002 version SP1 Visio 2002 version SP2 Office Word Viewe...
Microsoft GDI+ PNG File Integer Overflow Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...
Microsoft GDI+ WMF File Processing Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes WMF image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...
Groove Virtual Office XUpload ActiveX控件缓冲区溢出漏洞
Groove Virtual Office是一款协同办公处理文档的应用程序。 Groove Virtual Office包含的XUpload ActiveX控件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 XUpload ActiveX控件对"AddFolder"方法缺少正确的边界错误,构建恶意的WEB页,诱使用户访问,可触发缓冲区溢出,精心构建提交数据可能以应用程序进程权限执行任意指令。 Groove Virtual Office 3.x Office Groove 2007不受此漏洞影响:...
Security Update for Groove 2007 (KB2494047)
A security vulnerability exists in Microsoft Groove 2007 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft Office Groove 2007 (KB2552997)
A security vulnerability exists in Microsoft Groove 2007 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...