5 matches found
CVE-2010-3947
Heap-based buffer overflow in the TIFF image converter in the graphics filters in Microsoft Office XP SP3, Office Converter Pack, and Works 9 allows remote attackers to execute arbitrary code via a crafted TIFF image in an Office document, aka "TIFF Image Converter Heap Overflow Vulnerability."...
Microsoft Office艺术绘图记录解析内存破坏漏洞(MS10-087)
BUGTRAQ ID: 44656 CVE ID: CVE-2010-3334 Microsoft Office是非常流行的办公软件套件。 Office在解析艺术绘图记录时没有充分地执行验证,如果msofbtSp记录指定了某些标志就可以触发内存破坏,导致执行任意代码。 Microsoft Office XP SP3 Microsoft Office for Mac 2011 Microsoft Office 2010 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Office 2003...
CORE-2009-1103: Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability 1. Advisory Information Title: Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability...
CVE-2008-4020
Summary: CVE-2008-4020 is a cross-site scripting vulnerability in Microsoft Office XP SP3 related to the CDO protocol handling of the Content-Disposition header. When a user accesses content via a cdo: URL, the Content-Disposition header may be ignored and the download dialog bypassed, potentiall...
Memory corruption
Use-after-free vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via an HTML document with a large number of Cascading Style Sheets CSS selectors, related to a "memory handling erro...