Lucene search
+L

372 matches found

Check Point Advisories
Check Point Advisories
added 2009/12/15 12:0 a.m.22 views

Microsoft Office Drawing Record msofbtOPT Code Execution (MS07-015; CVE-2007-0671)

Microsoft Office is a popular productivity application suite released by Microsoft Corporation. It includes a word processor, a spreadsheet application, a presentation editor, and a number of other applications and components. There exists a vulnerability in Microsoft Office products. The flaw is...

9.3CVSS7.2AI score0.42139EPSS
Exploits0
NVD
NVD
added 2009/11/10 7:30 p.m.20 views

CVE-2009-2838

Integer overflow in QuickLook in Apple Mac OS X 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted Microsoft Office document that triggers a buffer overflow...

6.8CVSS7.8AI score0.03293EPSS
Exploits1References4
Prion
Prion
added 2009/11/10 7:30 p.m.13 views

Integer overflow

Integer overflow in QuickLook in Apple Mac OS X 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted Microsoft Office document that triggers a buffer overflow...

6.8CVSS8.4AI score0.03293EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/11/10 7:0 p.m.26 views

CVE-2009-2838

Integer overflow in QuickLook in Apple Mac OS X 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted Microsoft Office document that triggers a buffer overflow...

7.8AI score0.03293EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2008/11/10 12:0 a.m.19 views

ClamAV < 0.94.1 get_unicode_name() Function Off-by-One Buffer Overflow (deprecated)

Binary data 4744.prm...

9.3CVSS7.3AI score0.08293EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2008/11/08 12:0 a.m.39 views

clamav -- off-by-one heap overflow in VBA project parser

Advisory from Moritz Jodeit, November 8th, 2008: ClamAV contains an off-by-one heap overflow vulnerability in the code responsible for parsing VBA project files. Successful exploitation could allow an attacker to execute arbitrary code with the privileges of the clamd' process by sending an email...

9.3CVSS6.1AI score0.08293EPSS
Exploits1References2
Prion
Prion
added 2008/10/15 12:12 a.m.32 views

Integer overflow

Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA Performance Cache when processing an Office document with an embedded object, which allows remote attackers to execute arbitrary code via an Excel file containing a crafted value, leading to...

9.3CVSS7.9AI score0.35685EPSS
Exploits1References11Affected Software1
securityvulns
securityvulns
added 2008/10/15 12:0 a.m.52 views

[Full-disclosure] iDefense Security Advisory 10.14.08: Microsoft Visual Basic for Applications - Multiple Vulnerabilities

iDefense Security Advisory 10.14.08 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 14, 2008 I. BACKGROUND Microsoft VBA is an implementation of Microsoft Visual Basic programming language for developing client desktop packaged applications and integrating them with existing data and...

9.3CVSS0.1AI score0.35685EPSS
Exploits1
CVE
CVE
added 2008/10/15 12:0 a.m.69 views

CVE-2008-3477

CVE-2008-3477 affects Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2/SP3, in which the VBA Performance Cache handling of embedded objects can be abused to execute arbitrary code. The root cause is from heap-based and other memory corruptions (overflow/invalid indexing) when processing an object...

9.3CVSS7.4AI score0.35685EPSS
Exploits1References11Affected Software1
Cvelist
Cvelist
added 2008/10/15 12:0 a.m.29 views

CVE-2008-3477

Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA Performance Cache when processing an Office document with an embedded object, which allows remote attackers to execute arbitrary code via an Excel file containing a crafted value, leading to...

7.5AI score0.35685EPSS
Exploits1References11
Cvelist
Cvelist
added 2008/03/11 11:0 p.m.42 views

CVE-2008-0118

Unspecified vulnerability in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, Excel Viewer 2003 up to SP3, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption from an "allocation error," aka "Microsoft...

9.6AI score0.34842EPSS
Exploits5References8
CVE
CVE
added 2005/06/21 4:0 a.m.52 views

CVE-2002-1776

Symantec Norton AntiVirus 2002 is affected by CVE-2002-1776. The issue allows remote attackers to bypass virus protection via a Word Macro virus with a .nch or .dbx extension, which is automatically recognized and executed as a Microsoft Office document. The vendor disputes the claim, noting that...

7.5CVSS7AI score0.02574EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder