15 matches found
wdqs-results (>=0.1.2 <=0.1.6), yasgui-yasr (>=2.3.0 <=2.7.5) potentially affected by CVE-2016-1000241 via pivottable (=1.6.3)
pivottable NPM version =1.6.3 is affected by a known vulnerability. The following packages have a transitive dependency on pivottable and may be impacted: - wdqs-results =0.1.2, =2.3.0, =2.7.5 Source cves: CVE-2016-1000241 Source advisory: OSV:GHSA-CJJ8-WFRX-JQCF...
Cross-Site Scripting (XSS) in pivottable
Affected versions of pivottable are vulnerable to cross-site scripting, due to a new mechanism used to render JSON elements. Recommendation Update to version 2.0.0 or later...
GHSA-CJJ8-WFRX-JQCF Cross-Site Scripting (XSS) in pivottable
Affected versions of pivottable are vulnerable to cross-site scripting, due to a new mechanism used to render JSON elements. Recommendation Update to version 2.0.0 or later...
Description of the security update for Excel 2016: June 12, 2018
Description of the security update for Excel 2016: June 12, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...
Cross-Site Scripting (XSS)
Overview Affected versions of pivottable are vulnerable to cross-site scripting, due to a new mechanism used to render JSON elements. Recommendation Update to version 2.0.0 or later. References - PR 401 - GitHub Advisory...
Microsoft Office Excel PivotTable Cache Data Record Handling Overflow
Added: 08/19/2010 CVE: CVE-2010-2562 BID: 42199 OSVDB: 66991 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Excel is vulnerable to a stack buffer overflow due to a logic error when parsing...
Microsoft Office Excel PivotTable Cache Data Record Handling Overflow
Added: 08/19/2010 CVE: CVE-2010-2562 BID: 42199 OSVDB: 66991 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Excel is vulnerable to a stack buffer overflow due to a logic error when parsing...
Microsoft Office Excel PivotTable Cache Data Record Handling Overflow
Added: 08/19/2010 CVE: CVE-2010-2562 BID: 42199 OSVDB: 66991 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Excel is vulnerable to a stack buffer overflow due to a logic error when parsing...
Microsoft Excel 'PivotTable Cache Data' Record Parsing Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability because it fails to properly bounds-check user-supplied input. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel '.xls' file. Successful exploits can allow attackers to...
ZDI-09-082: Microsoft Office Excel PivotTable Cache Record Parsing Memory Corruption Vulnerability
ZDI-09-082: Microsoft Office Excel PivotTable Cache Record Parsing Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-082 November 10, 2009 -- CVE ID: CVE-2009-3127 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Excel -- TippingPointTM IPS...
Microsoft Excel 'PivotTable' Cache Record Memory Corruption Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Excel '.xls' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Office Excel PivotTable Cache Record Parsing Memory Corruption Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must open a malicious document. The specific flaw exists when parsing a document containing a...
Security update 1970-01-01
...
Security update 1970-01-01
...
Security update 1970-01-01
...