Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

seebug.org
seebug.orgadded 2007/03/01 12:0 a.m.15 views

Microsoft Windows OLE Dialog内存破坏漏洞(MS07-011)

Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows提供的OLE Dialog组件中存在一个远程执行代码漏洞。当用户与RTF文件中的畸形嵌入OLE对象进行交互时,就可能导致内存破坏,在用户系统上执行任意代码。 成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。要利用此漏洞,需要进行用大量的户交互。 Microsoft Windows XP SP2 Microsoft Windows...

7.5AI score
Exploits0
Prion
Prionadded 2007/02/13 8:28 p.m.16 views

Memory corruption

The OLE Dialog component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption...

7.6CVSS7.8AI score0.63231EPSS
Exploits0References9Affected Software1
CVE
CVEadded 2007/02/13 8:0 p.m.53 views

CVE-2007-0026

The CVE-2007-0026 issue affects Microsoft Windows (older OSes: Windows 2000 SP4, XP SP2, 2003 SP1) where the OLE Dialog component parses OLE objects embedded in RTF documents. The root cause is improper validation when parsing embedded OLE objects in RTF, causing memory corruption that could allo...

7.6CVSS7.4AI score0.63231EPSS
Exploits0References9Affected Software3
Tenable Nessus
Tenable Nessusadded 2007/02/13 12:0 a.m.46 views

MS07-011: Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436)

The remote host contains a version of Microsoft Windows that has a vulnerability in the OLE Dialog component that could be abused by an attacker to execute arbitrary code on the remote host. To exploit this vulnerability, an attacker would need to send a specially crafted RTF file to a user on th...

7.6CVSS6.3AI score0.63231EPSS
Exploits0References2
securityvulns
securityvulnsadded 2007/02/13 12:0 a.m.77 views

Microsoft Security Bulletin MS07-011 Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436)

Microsoft Security Bulletin MS07-011 Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution 926436 Published: February 13, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity...

7.6CVSS0.6AI score0.63231EPSS
Exploits0
Symantec
Symantecadded 2007/02/13 12:0 a.m.13 views

Microsoft Windows OLE Dialog Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability that occurs when the application attempts to parse malformed Rich Text Files RTF. An attacker could exploit this issue by enticing a victim to load a malicious RTF file. If the vulnerability is successfully exploited,...

8AI score
Exploits0References2Affected Software5
Rows per page
Query Builder