13 matches found
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption
This module exploits a memory corruption vulnerability within versions 10 and 11 of the Office Web Component Spreadsheet ActiveX control. This module was based on an exploit found in the wild. This module requires Metasploit: https://metasploit.com/download Current source:...
ZDI-09-055: Microsoft Office OWC10 ActiveX Control Loading and Unloading Heap Corruption Vulnerability
ZDI-09-055: Microsoft Office OWC10 ActiveX Control Loading and Unloading Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-055 August 11, 2009 -- CVE ID: CVE-2009-0562 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel ...
ZDI-09-054: Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject() Heap Corruption Vulnerability
ZDI-09-054: Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-054 August 11, 2009 -- CVE ID: CVE-2009-1136 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel...
ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability
ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-056 August 11, 2009 -- CVE ID: CVE-2009-2496 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel --...
Microsoft Office OWC10 ActiveX Control Loading and Unloading Heap Corruption Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists when loading and unloading the vulnerable control...
Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific vulnerability exists in the OWC10.Spreadsheet.10 ActiveX control...
Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject() Heap Corruption Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists during the processing of malicious parameters to the...
MS Office Web Components Spreadsheet ActiveX (OWC10/11) Exploit
No description provided by source. Author : Ahmed Obied [email protected] - Based on the code posted at http://www.milw0rm.com/exploits/9163 - Tested using: Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc10.dll installed Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc11.dll...
MS Office Web Components Spreadsheet ActiveX (OWC10/11) Exploit
Exploit for windows platform in category remote exploits =============================================================== MS Office Web Components Spreadsheet ActiveX OWC10/11 Exploit =============================================================== Author : Ahmed Obied - Tested using: Internet...
Microsoft Office Web Active-X Exploit
Author : Ahmed Obied [email protected] - Based on the code posted at http://www.milw0rm.com/exploits/9163 - Tested using: Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc10.dll installed Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc11.dll installed Usage : python ieowc.py...
Microsoft Office Web Components Spreadsheet - ActiveX 'OWC10/11' Remote Overflow
Author : Ahmed Obied [email protected] - Based on the code posted at http://www.milw0rm.com/exploits/9163 - Tested using: Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc10.dll installed Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc11.dll installed Usage : python ieowc.py...
CVE-2009-1136
CVE-2009-1136 affects the Microsoft Office Web Components Spreadsheet ActiveX control (OWC10/OWC11) bundled with Office XP SP3, Office 2003 SP3, and related Web Components/ISA configurations. A crafted call to msDataSourceObject in Internet Explorer allows remote code execution; this vulnerabilit...
Microsoft Office Web Components ActiveX Control 'msDataSourceObject()' Code Execution Vulnerability
Description Microsoft Office Web Components is prone to a remote code-execution vulnerability that affects the OWC10.Spreadsheet ActiveX control. The control is identified by the following CLSIDs: 0002E541-0000-0000-C000-000000000046 0002E559-0000-0000-C000-000000000046 An attacker could exploit...