Ubuntu: Security Advisory (USN-374-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Macro-less Code Exec in MSWord

Authors: Etienne Stalmans, Saif El-Sherei What if we told you that there is a way to get command execution on MSWord without any Macros, or memory corruption?! Windows provides several methods for transferring data between applications. One method is to use the Dynamic Data Exchange DDE protocol...

Fedora 17 : calligra-2.5.0-2.fc17 / calligra-l10n-2.5.0-2.fc17 (2012-11566)

New stable release, which includes security fix for msword-odf import filter. See also: http://www.calligra.org/news/calligra-2-5-released/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

Fedora 16 : koffice-2.3.3-22.fc16 (2012-11546)

Includes backported patch from calligra for msword filter overflow. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Stack overflow

Stack-based buffer overflow in the MSWord text-import extension Word 6-2000 Filter.xnt in QuarkXPress 7.2 for Windows, when using the Rectangle Text Box tool for importing text, allows user-assisted remote attackers to execute arbitrary code via a long font name...

CVE-2007-3678

Stack-based buffer overflow in the MSWord text-import extension Word 6-2000 Filter.xnt in QuarkXPress 7.2 for Windows, when using the Rectangle Text Box tool for importing text, allows user-assisted remote attackers to execute arbitrary code via a long font name...

CVE-2007-3678

Stack-based buffer overflow in the MSWord text-import extension Word 6-2000 Filter.xnt in QuarkXPress 7.2 for Windows, when using the Rectangle Text Box tool for importing text, allows user-assisted remote attackers to execute arbitrary code via a long font name...

CVE-2007-3678

CVE-2007-3678 is a stack-based buffer overflow in the MSWord text-import extension (Word 6-2000 Filter.xnt) of QuarkXPress 7.2 for Windows. The overflow occurs when using the Rectangle Text Box tool to import text and results from a long font name, allowing user-assisted remote attackers to execu...

USN-374-1: wvWare vulnerability

An integer overflow was discovered in the DOC file parser of the wv library. By tricking a user into opening a specially crafted MSWord .DOC file, remote attackers could execute arbitrary code with the user's privileges...