Lucene search
K

14 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.5 views

The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, Microsoft SharePoint, and the text editor Microsoft Word relates to a buffer overflow in dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, Microsoft SharePoint, and the text editor Microsoft Word is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.0056EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/11 12:0 a.m.6 views

The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and the Microsoft Outlook email client arises from insufficient validation of input data, allowing an attacker to execute arbitrary code.

The vulnerabilities of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and the Microsoft Outlook email client are related to insufficient validation of input data. Exploiting these vulnerabilities can allow attackers to execute arbitrary code...

6.7CVSS5.9AI score0.01368EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/03/14 12:0 a.m.6 views

The vulnerability of Microsoft Office packages, WordL, and 365 Apps for Enterprise lies in the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages, Word, and 365 Apps for Enterprise lies in the ability to exploit memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.9AI score0.00655EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.4 views

Vulnerability of Microsoft Office packages, Microsoft 365 Apps, Microsoft SharePoint Server, and Microsoft SharePoint Enterprise Server: This vulnerability stems from operations that occur outside of the buffer in memory, allowing attackers to execute arbitrary code.

Packages such as Microsoft Office, Microsoft 365 Apps, Microsoft SharePoint Server, and Microsoft SharePoint Enterprise Server are associated with operations that involve writing data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

5.5CVSS6.1AI score0.01058EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.3 views

PT-2024-9222 · Microsoft · Office 365 +2

Name of the Vulnerable Software and Affected Versions: Microsoft Excel affected versions not specified Description: The issue is related to the use of an uninitialized resource in Microsoft Office and Office 365 packages. Exploitation of this issue may allow an attacker to execute arbitrary code....

7.8CVSS7.3AI score0.00736EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/10/11 12:0 a.m.5 views

The vulnerability of Microsoft Office Visio packages and Microsoft 365 Apps for Enterprise allows a perpetrator to execute arbitrary code.

The vulnerability of Microsoft Office Visio package editors within Microsoft Office and Microsoft 365 Apps for Enterprise programs is related to the absence of warnings about dangerous actions. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS5.8AI score0.0071EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/10/11 12:0 a.m.2 views

PT-2022-5964 · Microsoft · 365 Apps For Enterprise +2

Name of the Vulnerable Software and Affected Versions: Microsoft Word affected versions not specified Description: The issue is related to insufficient input validation in Microsoft Office and Microsoft 365 Apps for Enterprise packages. This can allow an attacker to execute arbitrary code...

7.8CVSS9.6AI score0.00794EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2022/03/28 12:0 a.m.6 views

The vulnerability of Microsoft Office packages, Microsoft Word, and Microsoft 365 Apps for Enterprise arises from insufficient validation of input data. This allows attackers to disclose sensitive information and circumvent existing security restrictions.

The vulnerability of Microsoft Office, Microsoft Word, and Microsoft 365 Apps for Enterprise packages is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to disclose sensitive information and circumvent existing security restrictions...

5.5CVSS6.5AI score0.00999EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/02/05 12:0 a.m.3 views

PT-2022-1980

Name of the Vulnerable Software and Affected Versions Microsoft Word affected versions not specified Description The issue is related to errors in security settings of Microsoft Office and Microsoft 365 Apps for Enterprise packages, which can allow an attacker to bypass security features...

5.5CVSS6.7AI score0.01895EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2021/11/11 12:0 a.m.6 views

The vulnerability of Microsoft Office packages, Microsoft Office Online Server, Microsoft Office Web Apps Server, Word Automation Services, and the Microsoft Word text editor arises from allowing operations beyond the buffer boundaries, enabling attackers to execute arbitrary code.

The vulnerability of Microsoft Office packages, Microsoft Office Online Server, Microsoft Office Web Apps Server, Word Automation Services, and the Microsoft Word text editor is related to the execution of operations outside of the buffer boundaries. Exploitation of this vulnerability could allow...

10CVSS8.3AI score0.57705EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/03/17 12:0 a.m.8 views

Vulnerability of Microsoft Office packages, Office Online Server, 365 Apps for Enterprise, Web Apps Server, and Microsoft Excel – related to improper code generation – allows attackers to execute arbitrary code.

The vulnerabilities of Microsoft Office packages, Office Online Server, 365 Apps for Enterprise, Web Apps Server, and Microsoft Excel are related to improper code generation. Exploiting these vulnerabilities allows a remote attacker to execute arbitrary code...

9CVSS7.7AI score0.03122EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/03/17 12:0 a.m.5 views

Vulnerability of Microsoft Office packages, Office Online Server, 365 Apps for Enterprise, Web Apps Server, and Microsoft Excel – related to improper code generation – allows attackers to execute arbitrary code.

The vulnerabilities of Microsoft Office packages, Office Online Server, 365 Apps for Enterprise, Web Apps Server, and Microsoft Excel are related to improper code generation. Exploiting these vulnerabilities allows a remote attacker to execute arbitrary code...

9CVSS7.7AI score0.03571EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.8 views

The vulnerabilities of Microsoft Office packages, Microsoft Office Online Server, Microsoft Office Web Apps Server, Microsoft SharePoint Server, Microsoft SharePoint Enterprise Server, and the text editor Microsoft Word are related to memory object processing errors, allowing attackers to execute arbitrary code.

The vulnerabilities of Microsoft Office packages, Microsoft Office Online Server, Microsoft Office Web Apps Server, Microsoft SharePoint Server, Microsoft SharePoint Enterprise Server, and the word processing software Microsoft Word are related to object handling errors in memory. Exploiting thes...

9CVSS8.1AI score0.10677EPSS
Exploits0References2
OSV
OSV
added 2014/02/21 6:6 p.m.5 views

MGASA-2014-0086 Updated gnome-chemistry-utils, gnumeric and goffice packages fix security vulnerability

Heap-based buffer overflow in the mseschergetdata function in plugins/excel/ms-escher.c in GNOME Office Gnumeric before 1.12.9 allows remote attackers to cause a denial of service crash via a crafted xls file with a crafted length value. CVE-2013-6836...

4.3CVSS6.7AI score0.01747EPSS
Exploits1References3
Rows per page
Query Builder