33 matches found
Security Update for Word 2002 (KB895589)
A security vulnerability exists in Microsoft Word 2002 that could allow arbitrary code to run when you open a maliciously modified document. The update resolves this vulnerability so that Word 2002 documents are handled appropriately...
CVE-2010-3217
Double free vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a Word document with crafted List Format Override LFO records, aka "Word Pointer Vulnerability."...
CVE-2010-3216
Microsoft Word 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a crafted Word document containing bookmarks that trigger use of an invalid pointer and memory corruption, aka "Word Bookmarks Vulnerability."...
Heap overflow
Heap-based buffer overflow in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via malformed records in a Word document, aka "Word Heap Overflow Vulnerability."...
Double free
Double free vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a Word document with crafted List Format Override LFO records, aka "Word Pointer Vulnerability."...
Memory corruption
Array index vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a crafted Word document that triggers memory corruption, aka "Word Index Parsing Vulnerability."...
CVE-2010-3218
Heap-based buffer overflow in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via malformed records in a Word document, aka "Word Heap Overflow Vulnerability."...
Microsoft Word Return Value Handling (CVE-2010-3215) Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Word file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Word Index Value Parsing (CVE-2010-3219) Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Word file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Word Malformed Record Value (CVE-2010-3218) Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Word file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Word sprmCMajority记录解析栈溢出漏洞(MS10-056)
BUGTRAQ ID: 42136 CVE ID: CVE-2010-1900 Word是微软Office套件中的文字处理工具。 在解析Word文档中的sprmCMajority记录时,由于处理sprmCMajority sprm组没有对参数执行检查,攻击者可以控制写入到栈缓冲区中的数据数量,触发栈溢出。成功利用此漏洞的攻击者可完全控制受影响的系统。 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Word 2007 SP2 Microsoft Word 2003 SP3 Microsoft Wo...
Microsoft Word HTML Linked Object Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability because it fails to properly allocate heap-based memory. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in...
Security Update for Microsoft Word 2002 (KB973444)
A security vulnerability exists in Microsoft Word 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Microsoft Works File Converter FontName buffer overflow
Added: 06/15/2009 CVE: CVE-2009-1533 BID: 35184 OSVDB: 54939 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows command execution when a user opens a WPS file...
Microsoft Works File Converter FontName buffer overflow
Added: 06/15/2009 CVE: CVE-2009-1533 BID: 35184 OSVDB: 54939 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows command execution when a user opens a WPS file...
Microsoft Works File Converter FontName buffer overflow
Added: 06/15/2009 CVE: CVE-2009-1533 BID: 35184 OSVDB: 54939 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows command execution when a user opens a WPS file...
Microsoft Works File Converter FontName buffer overflow
Added: 06/15/2009 CVE: CVE-2009-1533 BID: 35184 OSVDB: 54939 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows command execution when a user opens a WPS file...
Security Update for Microsoft Word 2002 (KB969602)
A security vulnerability exists in Microsoft Word 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves the vulnerability so that Microsoft Word 2002 documents are handled appropriately...
Security Update for Microsoft Word 2002 (KB956329)
A security vulnerability exists in Microsoft Word 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Microsoft Word Could Allow Remote Code Execution Vulnerability
This host is installed with Microsoft Office with MS Word, which is prone to remote code execution vulnerability. OpenVAS Vulnerability Test $Id: secpodmswordcodeexecvuln900006.nasl 6519 2017-07-04 14:08:14Z cfischer $ Description: Microsoft Word Could Allow Remote Code Execution Vulnerability...