4 matches found
ZDI-06-033: Microsoft Office Excel File Format DATETIME Record Parsing Vulnerability
ZDI-06-033: Microsoft Office Excel File Format DATETIME Record Parsing Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-033.html October 10, 2006 -- CVE ID: CVE-2006-2387 -- Affected Vendor: Microsoft -- Affected Products: Microsoft Office 2000 SP3 Microsoft Office XP SP3 Microsof...
Buffer overflow
Buffer overflow in Microsoft Word in Office 2000 SP3, Office XP SP3, Office 2003 Sp1 and SP2, and Microsoft Works Suites through 2006, allows user-assisted attackers to execute arbitrary code via a malformed object pointer, as originally reported by ISC on 20060519 for a zero-day attack...
CVE-2006-2492
CVE-2006-2492 is a buffer overflow in Microsoft Word (Office 2000 SP3, XP SP3, 2003 SP1/SP2) and Microsoft Works through 2006 caused by a malformed object pointer. The flaw allows arbitrary code execution and requires user interaction (via opening a crafted Word/Works document). Affected products...
CVE-2005-0564
Stack-based buffer overflow in Microsoft Word 2000 and Word 2002, and Microsoft Works Suites 2000 through 2004, might allow remote attackers to execute arbitrary code via a .doc file with long font information...