Hacker stole $55M worth of crypto from DeFi lender bZx via phishing

By Waqas The hack took place after one of the bZx's employees was sent a phishing email embedded with a malicious macro hidden in an MS word document, This is a post from HackRead.com Read the original post: Hacker stole $55M worth of crypto from DeFi lender bZx via phishing...

Memory corruption vulnerability in Polaris Office windows version

Polaris Office is an office suite compatible with MS Word, Excel, PowerPoint and Adobe PDF. A memory corruption vulnerability exists in Polaris Office windows version. An attacker could exploit this vulnerability to cause the program to crash...

Memory Corruption Vulnerability in Polaris Office for windows (CNVD-2021-43947)

Polaris Office is an office suite compatible with MS Word, Excel, PowerPoint and Adobe PDF. A memory corruption vulnerability exists in Polaris Office windows version. An attacker could exploit this vulnerability to cause the program to crash...

Memory corruption vulnerability in Polaris Office for windows (CNVD-2021-43946)

Polaris Office is an office suite compatible with MS Word, Excel, PowerPoint and Adobe PDF. A memory corruption vulnerability exists in Polaris Office windows version. An attacker could exploit this vulnerability to cause the program to crash...

Debian DSA-4178-1 : libreoffice - security update

Two vulnerabilities were discovered in LibreOffice's code to parse MS Word and Structured Storage files, which could result in denial of service and potentially the execution of arbitrary code if a malformed file is opened. C Tenable Network Security, Inc. The descriptive text and package checks ...

[SECURITY] [DSA 4178-1] libreoffice security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4178-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 20, 2018 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-4178-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MS Word Maybe Used for Cryptojacking Attacks

By David Balaban Cryptojacking JavaScript can be launched in Word documents - New This is a post from HackRead.com Read the original post: MS Word Maybe Used for Cryptojacking Attacks...

A week in security (February 19 – February 25)

Last week on Malwarebytes Labs, we gave readers a primer on encryption, took a stab at that Deepfakes tool Internet users seem to be interested in, and started a new series that talks about GDPR. We also looked at a drive-by download campaign that starts in booby-trapped Chinese websites that dro...

MS-Word Payload Delivery: Macro Creator

Invoke-MacroCreator is a powershell Cmdlet that allows for the creation of an MS-Word document embedding a VBA macro with various payload delivery and execution capabilities. Description Basically the script supports three types of payload that you MUST specify using the -t argument: 1. shellcode...

Enable this New Setting to Secure your Computer from Macro-based Malware

Do you deal with MS Word files on the daily basis? If yes, then are you aware that even opening a simple doc file could compromise your system? It is a matter to think that the virus does not directly affect you, but it is you who let the virus carry out the attack by enabling deadly "Macros" to...

[SECURITY] Fedora 20 Update: apache-poi-3.10.1-2.fc20

The Apache POI Project's mission is to create and maintain Java APIs for manipulating various file formats based upon the Office Open XML standards OOXML and Microsoft's OLE 2 Compound Document format OLE2. In short, you can read and write MS Excel files using Java. In addition, you can read and...

Antiword: User-assisted execution of arbitrary code

Background Antiword is a free MS Word reader. Description A buffer overflow vulnerability has been found in wordole.c in Antiword. Impact A remote attacker could entice a user to open a specially crafted document using Antiword, possibly resulting in execution of arbitrary code with the privilege...

[SECURITY] Fedora 20 Update: antiword-0.37-17.fc20

Antiword is a free MS-Word reader for Linux, BeOS and RISC OS. It converts the documents from Word 6, 7, 97 and 2000 to ASCII and Postscript. Antiword tries to keep the layout of the document intact...

[SECURITY] Fedora 19 Update: antiword-0.37-17.fc19

Antiword is a free MS-Word reader for Linux, BeOS and RISC OS. It converts the documents from Word 6, 7, 97 and 2000 to ASCII and Postscript. Antiword tries to keep the layout of the document intact...

[SECURITY] Fedora 21 Update: apache-poi-3.10.1-1.fc21

The Apache POI Project's mission is to create and maintain Java APIs for manipulating various file formats based upon the Office Open XML standards OOXML and Microsoft's OLE 2 Compound Document format OLE2. In short, you can read and write MS Excel files using Java. In addition, you can read and...

MS WORD/POWERPOINT/EXCEL ONLINE Cloud Service Detection

Binary data 8483.prm...

MS Word Record Parsing Buffer Overflow (MS09-027)

No description provided by source. MS Word Record Parsing Buffer OverflowMS-09-027 Vulnerble application MS office 2003 Tested on XP SP2 - MS Ofice 2003 v. 11.5604.5606 Bug Found By Wushi of team509 !/usr/bin/python import sys import zlib windows/exec - CMD=calc.exe shellcode =...

MS Word - Record Parsing Buffer Overflow MS09-027 (meta)

No description provided by source. $Id: ms09-027 10477 2011-04-13 11:59:02Z mc $ This file is not part of the Metasploit Framework and may not be subject to redistribution and commercial restrictions. TODO some testing to find the real banned characters and maxlen add those parameters to the .rb...

MS Word 95/97/98/2000/2002 INCLUDEPICTURE Document Sharing File Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/5764/info The INCLUDEPICTURE Field Code may be used to insert arbitrary URLs into a document. The INCLUDEPICTURE Field Code is reported to, under some circumstances, present a security threat. If the INCLUDEPICTURE Field...