41 matches found
VulnCheck KEV: CVE-2023-21715
Microsoft Office Publisher contains a security feature bypass vulnerability that allows for a local, authenticated attack on a targeted system...
PT-2023-18339 · Microsoft · Office Publisher
Name of the Vulnerable Software and Affected Versions: Microsoft Office Publisher affected versions not specified Description: The issue is a security feature bypass vulnerability in Microsoft Office Publisher. It has been found exploited in the wild, affecting Microsoft products. There is no...
Microsoft Office Publisher pubconv.dll Size Value Heap Corruption (MS10-103) - Ver2 (CVE-2010-2569)
Microsoft Publisher is a desktop publishing application for creating marketing materials, managing customer lists and more. The vulnerability is due to an error in pubconv.dll, Publisher Converter DLL that is used to open Publisher files created in versions earlier than Microsoft Publisher 2007. ...
Microsoft Office Publisher Remote Code Execution Vulnerability (2830397)
This host is missing an important security update according to Microsoft Bulletin MS13-042. OpenVAS Vulnerability Test $Id: secpodms13-042.nasl 6115 2017-05-12 09:03:25Z teissa $ Microsoft Office Publisher Remote Code Execution Vulnerability 2830397 Authors: Antu Sanadi Copyright: Copyright c 201...
Microsoft Office Publisher Remote Code Execution Vulnerability (2830397)
This host is missing an important security update according to Microsoft Bulletin MS13-042. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Publisher 2010 - Crash (PoC)
Title : Microsoft Office Publisher 2010 memory corruption Version : Microsoft Office professional Plus 2010 Date : 2012-10-25 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Bug : ---- memory corruption during t...
Windows Object Packager Insecure Execution
Added: 01/24/2012 CVE: CVE-2012-0009 BID: 51297 OSVDB: 78212 Background Windows Object Packager is a tool that can be used to create a package that can be inserted into a file. Problem A vulnerability exists in the way the Windows Object Packager registers and implements packages stored on networ...
Windows Object Packager Insecure Execution
Added: 01/24/2012 CVE: CVE-2012-0009 BID: 51297 OSVDB: 78212 Background Windows Object Packager is a tool that can be used to create a package that can be inserted into a file. Problem A vulnerability exists in the way the Windows Object Packager registers and implements packages stored on networ...
Windows Object Packager Insecure Execution
Added: 01/24/2012 CVE: CVE-2012-0009 BID: 51297 OSVDB: 78212 Background Windows Object Packager is a tool that can be used to create a package that can be inserted into a file. Problem A vulnerability exists in the way the Windows Object Packager registers and implements packages stored on networ...
Microsoft Office Publisher contains multiple exploitable vulnerabilities
Overview Microsoft Office Publisher fails to properly validate Publisher documents, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Publisher is a desktop publishing application that is provided with some versions of...
VUPEN Security Research - Microsoft Office Publisher Size Value Heap Corruption Vulnerability (VUPEN-SR-2010-200)
VUPEN Security Research - Microsoft Office Publisher Size Value Heap Corruption Vulnerability VUPEN-SR-2010-200 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Publisher, is a desktop publishing application from Microsoft. It is an entry-level application,...
VUPEN Security Research - Microsoft Office Publisher Memory Corruption Vulnerability (VUPEN-SR-2010-041)
VUPEN Security Research - Microsoft Office Publisher Memory Corruption Vulnerability VUPEN-SR-2010-041 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Publisher, is a desktop publishing application from Microsoft. It is an entry-level application, differin...
VUPEN Security Research - Microsoft Office Publisher "pubconv.dll" Array Indexing Vulnerability (VUPEN-SR-2010-206)
VUPEN Security Research - Microsoft Office Publisher "pubconv.dll" Array Indexing Vulnerability VUPEN-SR-2010-206 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Publisher, is a desktop publishing application from Microsoft. It is an entry-level applicatio...
Security Update for Microsoft Office Publisher 2003 (KB2284695)
A security vulnerability exists in Microsoft Office Publisher 2003 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Microsoft Office Publisher Array Indexing Memory Corruption (MS10-103; CVE-2010-3955)
Microsoft Publisher is a desktop publishing application for creating marketing materials, managing customer lists and more A remote attacker can exploit this issue via a specially crafted Publisher file. Successful exploitation may allow execution of arbitrary code on the vulnerable system. The...
Microsoft Publisher File Conversion Textbox buffer overflow
Added: 04/30/2010 CVE: CVE-2010-0479 BID: 39347 OSVDB: 63748 Background Microsoft Office Publisher, part of the Microsoft Office suite, is a product for creating publications and marketing materials. Problem A buffer overflow vulnerability allows command execution when a user loads a Publisher 97...
CVE-2010-0479
CVE-2010-0479 is a remote-code-execution vulnerability in Microsoft Office Publisher (2002 SP3, 2003 SP3, 2007 SP1/SP2) caused by a buffer overflow in the Publisher file conversion TextBox processing. An attacker could trigger code execution by enticing a user to open a specially crafted Publishe...
Microsoft Office Publisher Remote Code Execution Vulnerability (981160)
This host is missing a critical security update according to Microsoft Bulletin MS10-023. OpenVAS Vulnerability Test $Id: secpodms10-023.nasl 6538 2017-07-05 11:38:27Z cfischer $ Microsoft Office Publisher Remote Code Execution Vulnerability 981160 Authors: Antu Sanadi Copyright: Copyright c 2010...
Microsoft Office Publisher文件转换TextBox处理缓冲区溢出漏洞(MS10-023)
BUGTRAQ ID: 39347 CVE ID: CVE-2010-0479 Publisher是微软Office办公软件套件中用于创建、个性化和共享各种出版物和营销材料的工具。 Publisher中负责转换Publisher 97格式文件的代码中存在缓冲区溢出漏洞。在处理畸形PUB文件中的TextBox项时就可以触发这个溢出,导致以打开文件用户的权限执行任意代码。 Microsoft Publisher 2007 SP2 Microsoft Publisher 2007 SP1 Microsoft Publisher 2003 SP3 Microsoft Publisher 2002...
Security Update for Microsoft Office Publisher 2003 (KB980469)
A security vulnerability exists in Microsoft Office Publisher 2003 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...