Vulnerability Spotlight: Code execution vulnerability in Microsoft Excel

Marcin Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Microsoft Excel contains a code execution vulnerability. This specific bug lies in the component of Excel that handles the Microsoft Office HTML and XML file types, first introduced in Office 2000. Microsoft disclosed...

Microsoft Word RTF pFragments Stack Buffer Overflow (File Format)

No description provided by source. $Id: ms10087rtfpfragmentsbof.rb 11875 2011-03-04 08:39:48Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

Microsoft Office Web Components ActiveX Control Stack Buffer Overflow Code Execution Vulnerability

Description The Microsoft Office Web Components ActiveX control is prone to a remote stack-based buffer-overflow vulnerability. An attacker could exploit this issue by enticing a victim to visit a maliciously crafted webpage. Successful exploits will allow the attacker to execute arbitrary code...

CVE-2009-0558

CVE-2009-0558 is an Array Indexing Memory Corruption Vulnerability in Microsoft Office Excel parsing code that can be triggered by a specially crafted Excel file. It affects Microsoft Office/Excel on Mac (Office 2004 and 2008 for Mac) and the Open XML File Format Converter for Mac, as well as Exc...

Microsoft Security Bulletin MS09-009 - Critical Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution (968557)

Microsoft Security Bulletin MS09-009 - Critical Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution 968557 Published: April 14, 2009 Version: 1.0 General Information Executive Summary This security update resolves a privately reported and a publicly disclosed vulnerability...

iDefense Security Advisory 08.12.08: Microsoft Excel FORMAT Record Invalid Array Index Vulnerability

iDefense Security Advisory 08.12.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 12, 2008 I. BACKGROUND Microsoft Excel is the spreadsheet application that is included with Microsoft Corp.'s Office productivity software suite. More information is available at the following website...

CVE-2008-3020

Microsoft Office 2000 SP3 and XP SP3; Office Converter Pack; and Works 8 do not properly parse the length of a BMP file, which allows remote attackers to execute arbitrary code via a crafted BMP file, aka the "Malformed BMP Filter Vulnerability."...

CVE-2008-3019

CVE-2008-3019 describes a remote code execution vulnerability in Microsoft Office filters related to malformed Encapsulated PostScript (EPS) handling. A crafted EPS file could allow code execution when opened with affected Office products: Office 2000 SP3, XP SP3, and 2003 SP2, plus the Office Co...

CVE-2008-3020

CVE-2008-3020 is a remote code execution vulnerability in Microsoft Office filters, specifically in the BMPIMP32.FLT module used by Office BMP import handling. A crafted BMP image with a malformed header (e.g., an excessive number of colors) causes a heap buffer overflow/memory corruption in BMP ...

Microsoft Security Bulletin MS08-051 – Critical Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (949785) Microsoft Security Bulletin MS08-051 – Critical

Microsoft Security Bulletin MS08-051 – Critical Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution 949785 Published: August 12, 2008 Version: 1.0 General Information Executive Summary This security update resolves three privately reported vulnerabilities in Microsoft Office...

Memory corruption

Use-after-free vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via an HTML document with a large number of Cascading Style Sheets CSS selectors, related to a "memory handling erro...

CVE-2008-1091

Unspecified vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via a Rich Text Format .rtf file with a malformed string that triggers a "memory calculation error" and a heap-based...

Code injection

Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI...

Microsoft Security Bulletin MS08-013 – Critical Vulnerability in Microsoft Office Could Allow Remote Code Execution (947108)

Microsoft Security Bulletin MS08-013 – Critical Vulnerability in Microsoft Office Could Allow Remote Code Execution 947108 Published: February 12, 2008 Version: 1.0 General Information Executive Summary This critical security update resolves a privately reported vulnerability in Microsoft Office...

Memory corruption

Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via a Workspace with a certain index value that triggers memory corruption...

CVE-2007-3890

Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via a Workspace with a certain index value that triggers memory corruption...

CVE-2007-3890

CVE-2007-3890 is a remote code execution vulnerability in Microsoft Excel across Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac. The root cause is improper validation of the Workspace index value used in an Excel file’s workspace (rtWnDesk records), leading to memory cor...

Microsoft Security Advisory (933052) Vulnerability in Microsoft Word Could Allow Remote Code Executio

Microsoft Security Advisory 933052 Vulnerability in Microsoft Word Could Allow Remote Code Execution Published: February 14, 2007 Microsoft is investigating new public reports of very limited, targeted attacks against Microsoft Word “zero-day” using a vulnerability in Microsoft Office 2000 and...

Code injection

Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 to 2006, and Office 2004 for Mac does not correctly check the properties of certain documents and warn the user of macro content, which allows user-assisted remote attackers to execute arbitrary code...

CVE-2007-0208

CVE-2007-0208 is the Microsoft Word Macro Vulnerability described in MS07-014. Word 2000 SP3, Word 2002/XP SP3, Word 2003 SP2, Works 2004–2006, and Word 2004 for Mac are affected by a flaw where Word does not properly validate the document’s properties, failing to display the macro security warni...