163 matches found
UBUNTU-CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
Catdoc 输入验证错误漏洞
Catdoc is a program that reads MS-Word files and prints them readably by an individual developer, Pete Warden in the United States. A security vulnerability exists in Catdoc version 0.95, which stems from an integer overflow in the OLE document file allocation table parser, which could lead to he...
Exploit for Use After Free in Microsoft
CVE-2025-21298 content This is a proof-of-concept for CV...
CVE-2025-20128
A vulnerability in the Object Linking and Embedding 2 OLE2 decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an integer underflow in a bounds check that allows for a heap buff...
ClamAV 安全漏洞
ClamAV Clam AntiVirus is a free and open source antivirus program from the ClamAV team. The software is used to detect Trojans, viruses, malware and other malicious threats. ClamAV suffers from a security vulnerability that stems from an integer underflow in OLE2 decryption, which allows...
CVE-2025-21298
Windows OLE Remote Code Execution Vulnerability...
January 7, 2025, update for PowerPoint 2016 (KB5002632)
January 7, 2025, update for PowerPoint 2016 KB5002632 This article describes update 5002632 for Microsoft PowerPoint 2016 that was released on January 7, 2025.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't...
The vulnerability of the OLE DB driver for SQL Server on Windows operating systems arises from insufficient validation of input data, allowing attackers to exploit their privileges.
The vulnerability of the OLE DB driver for SQL Server on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...
PT-2024-6305 · Microsoft · Sql Server
Name of the Vulnerable Software and Affected Versions: Microsoft SQL Server affected versions not specified Description: The issue is related to insufficient input validation in the OLE DB driver for SQL Server on Windows operating systems. This can be exploited by a remote attacker to disclose...
The vulnerability of the Windows OLE operating system component, which allows a hacker to execute arbitrary code.
The vulnerability of the Windows OLE operating system is related to overflow in the “heap”. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
CVE-2024-38152
Windows OLE Remote Code Execution Vulnerability...
Microsoft OLE 安全漏洞
Microsoft OLE is an object-oriented technology from Microsoft Corporation USA. A security vulnerability exists in Microsoft OLE. An attacker exploiting this vulnerability could remotely execute code. The following products and versions are affected:Windows 10 Version 1809 for 32-bit Systems,Windo...
The vulnerability of the OLE DB driver for SQL Server, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the OLE DB driver for SQL Server is related to buffer overflow in the “heap”. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the OLE DB driver for SQL Server, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the OLE DB driver for SQL Server is related to buffer overflow in the “heap”. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the OLE DB driver for SQL Server, related to the use of memory after it is freed, allows a hacker to execute arbitrary code.
The vulnerability of the OLE DB driver for SQL Server relates to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the OLE DB driver for SQL Server, related to integer overflow, allows an attacker to execute arbitrary code.
The vulnerability of the OLE DB driver for SQL Server is related to integer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the OLE DB driver for SQL Server, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the OLE DB driver for SQL Server is related to buffer overflow in the “heap”. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the OLE DB driver for SQL Server, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the OLE DB driver for SQL Server is related to buffer overflow in the “heap”. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the OLE DB driver for SQL Server, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the OLE DB driver for SQL Server is related to buffer overflow in the “heap”. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...
CVE-2024-37332
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability...