CVE-2023-50235

CVE-2023-50235 affects Hancom Office Show. The vulnerability lies in PPT file parsing where a lack of proper validation of the length of user-supplied data before copying to a stack-based buffer can enable remote code execution in the context of the current process. The issue requires user intera...

Microsoft Office PowerPoint PPT File Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office PowerPoint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Denial of Service Vulnerability in WPS Office 2016 Sneak Peek Version

WPS Office is an office software suite developed independently by Kingsoft Corporation. A denial-of-service vulnerability exists in WPS Office 2016 Sneak Peek Edition when handling special PPT files, which can be exploited by attackers to launch denial-of-service attacks...

Extreme Office 2017 version V1.0.3.3 suffers from a null pointer reference vulnerability (CNVD-2018-03746)

Extreme Office is an independently controlled office learning software developed by Beijing Haiteng Times Technology Co. Extreme Office 2017 suffers from a null pointer reference vulnerability when dealing with special ppt files, which can be exploited by an attacker to cause a denial of service...

Memory corruption vulnerability exists in RZoffice (CNVD-2017-36323)

SoftZone Office RZoffice is an office software, which is compatible with MS Office and consists of three parts: word processing, spreadsheet and presentation. RZoffice suffers from a memory corruption vulnerability when handling special ppt files. An attacker can exploit the vulnerability to...

WPS Office < 2016 - '.ppt' Heap Memory Corruption

Exploit for windows platform in category dos / poc Application: WPS Office Platforms: Windows Versions: Version before 2016 Author: Francis Provencher of COSIG Twitter: @COSIG 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1 Introduction =============== WPS Office an...

WPS Office 2016 - .ppt Heap Memory Corruption

WPS Office 2016 - .ppt Heap Memory Corruption Application: WPS Office Platforms: Windows Versions: Version before 2016 Author: Francis Provencher of COSIG Twitter: @COSIG 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1 Introduction =============== WPS Office an acrony...

Updated apache-poi packages fix CVE-2014-9527

Updated apache-poi packages fixes security vulnerability: A denial of service flaw was found in the way the HSLFSlideShow class implementation in Apache POI handled certain PPT files. A remote attacker could submit a specially crafted PPT file that would cause Apache POI to hang indefinitely...

MGASA-2015-0087 Updated apache-poi packages fix CVE-2014-9527

Updated apache-poi packages fixes security vulnerability: A denial of service flaw was found in the way the HSLFSlideShow class implementation in Apache POI handled certain PPT files. A remote attacker could submit a specially crafted PPT file that would cause Apache POI to hang indefinitely...

XSS vulnerability in the Office Powerpoint macro (Office Connector)

To reproduce: 1. Attach a ".ppt" file to the page. any file with that extension - doesn't need to be a powerpoint file 2. Add "Office Powerpoint" macro with Slide Number as: code "alertdocument.domain code 3. View page. See officeconnector, PptConverter.java, line...

SuSE 10 Security Update : OpenOffice_org (ZYPP Patch Number 7148)

Specially crafted ppt files could cause a heap-based buffer overflow in OpenOfficeorg Impress. Attackers could exploit that to crash OpenOfficeorg or potentially even execute arbitrary code. CVE-2010-2935 / CVE-2010-2936 This update also fixes numerous non-security bugs. Please refer to the packa...

openSUSE Security Update : OpenOffice_org-draw (openSUSE-SU-2010:0732-1)

Specially crafted ppt files could cause a heap based buffer overflow in OpenOfficeorg Impress. Attackers could exploit that to crash OpenOfficeorg or potentially even execute arbitrary code CVE-2010-2935, CVE-2010-2936. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Microsoft PowerPoint未明代码执行漏洞

Microsoft PowerPoint是一款流行的图片展示应用程序。 Microsoft PowerPoint处理恶意PPT文件存在问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 Microsoft PowerPoint 2003 SP2及之前版本 http://www.microsoft.com/technet/security...