Lucene search
K

180 matches found

OSV
OSV
added 2017/05/23 4:29 p.m.6 views

CVE-2017-2794

An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...

7.8CVSS6.3AI score0.01299EPSS
Exploits2References1
Cvelist
Cvelist
added 2017/05/23 4:0 p.m.27 views

CVE-2017-2794

An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...

8.3CVSS8.7AI score0.01299EPSS
Exploits2References1
CVE
CVE
added 2017/05/23 4:0 p.m.53 views

CVE-2017-2794

Summary of CVE-2017-2794 (connected details present): The vulnerability exists in the DHFSummary function of AntennaHouse DMC HTMLFilter (used by MarkLogic 8.0-6). A specially crafted PPT can trigger a stack-based buffer overflow via an overflowSize value read from Summary Information, then copie...

8.3CVSS8.1AI score0.01299EPSS
Exploits2References1Affected Software1
Talos
Talos
added 2017/05/04 12:0 a.m.58 views

AntennaHouse DMC HTMLFilter PPT DHFSummary Code Execution Vulnerability

Summary An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide maliciou...

8.3CVSS8.4AI score0.01299EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.34 views

AntennaHouse DMC HTMLFilter PPT ParseEnvironment Code Execution Vulnerability

Summary An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fil...

8.3CVSS8.5AI score0.00917EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2016/11/08 12:0 a.m.30 views

Microsoft Office Memory Corruption (MS16-133: CVE-2016-7230)

A remote code execution vulnerability exists in Microsoft PowerPoint. The vulnerability is due to a use-after-free error in Microsoft PowerPoint while handling a specially crafted PPT file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PPT...

9.3CVSS7.7AI score0.18419EPSS
Exploits0
FreeBSD
FreeBSD
added 2016/09/11 12:0 a.m.29 views

Apache OpenOffice -- multiple vulnerabilities

The Apache Openofffice project reports: CVE-2017-3157: Arbitrary file disclosure in Calc and Writer By exploiting the way OpenOffice renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrieved by the attacke...

7.8CVSS7.3AI score0.03122EPSS
Exploits3References4
0day.today
0day.today
added 2016/02/01 12:0 a.m.33 views

WPS Office < 2016 - '.ppt' Heap Memory Corruption

Exploit for windows platform in category dos / poc Application: WPS Office Platforms: Windows Versions: Version before 2016 Author: Francis Provencher of COSIG Twitter: @COSIG 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1 Introduction =============== WPS Office an...

7AI score
Exploits0
exploitpack
exploitpack
added 2016/02/01 12:0 a.m.16 views

WPS Office 2016 - .ppt Heap Memory Corruption

WPS Office 2016 - .ppt Heap Memory Corruption Application: WPS Office Platforms: Windows Versions: Version before 2016 Author: Francis Provencher of COSIG Twitter: @COSIG 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1 Introduction =============== WPS Office an acrony...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/02/01 12:0 a.m.25 views

WPS Office &lt; 2016 - &#039;.ppt&#039; drawingContainer Memory Corruption

Application: WPS Office Platforms: Windows Versions: Version 2016 Author: Francis Provencher of COSIG Twitter: @COSIG 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1 Introduction =============== WPS Office an acronym for Writer, Presentation and Spreadsheets,2...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/02/01 12:0 a.m.24 views

WPS Office &lt; 2016 - &#039;.ppt&#039; Heap Memory Corruption

Application: WPS Office Platforms: Windows Versions: Version before 2016 Author: Francis Provencher of COSIG Twitter: @COSIG 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1 Introduction =============== WPS Office an acronym for Writer, Presentation and Spreadsheets,2...

7AI score
Exploits0
seebug.org
seebug.org
added 2015/12/19 12:0 a.m.34 views

PHP process_nested_data 函数释放后重用漏洞

A while ago the function "processnesteddata" was changed to better handle object properties. Before it was possible to create numeric object properties which would cause trouble down the road. So the following code was added: if !objprops ... else / object properties should include no integers /...

7.5AI score
Exploits0
Mageia
Mageia
added 2015/02/26 8:26 a.m.43 views

Updated apache-poi packages fix CVE-2014-9527

Updated apache-poi packages fixes security vulnerability: A denial of service flaw was found in the way the HSLFSlideShow class implementation in Apache POI handled certain PPT files. A remote attacker could submit a specially crafted PPT file that would cause Apache POI to hang indefinitely...

5CVSS6.2AI score0.07922EPSS
Exploits0References2
OSV
OSV
added 2015/02/26 8:26 a.m.10 views

MGASA-2015-0087 Updated apache-poi packages fix CVE-2014-9527

Updated apache-poi packages fixes security vulnerability: A denial of service flaw was found in the way the HSLFSlideShow class implementation in Apache POI handled certain PPT files. A remote attacker could submit a specially crafted PPT file that would cause Apache POI to hang indefinitely...

5CVSS6.4AI score0.07922EPSS
Exploits0References3
NVD
NVD
added 2015/01/06 3:59 p.m.21 views

CVE-2014-9527

HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service infinite loop and deadlock via a crafted PPT file...

5CVSS5.8AI score0.07922EPSS
Exploits0References7
OSV
OSV
added 2015/01/06 3:59 p.m.7 views

CVE-2014-9527

HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service infinite loop and deadlock via a crafted PPT file...

6.2AI score
Exploits0References7
Prion
Prion
added 2015/01/06 3:59 p.m.26 views

Design/Logic Flaw

HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service infinite loop and deadlock via a crafted PPT file...

5CVSS6.8AI score0.07922EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2015/01/06 3:0 p.m.31 views

CVE-2014-9527

HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service infinite loop and deadlock via a crafted PPT file...

5.8AI score0.07922EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2015/01/06 3:0 p.m.35 views

CVE-2014-9527

HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service infinite loop and deadlock via a crafted PPT file...

5CVSS5.9AI score0.07922EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

Microsoft PowerPoint 2003 mso.dll PPT Processing Unspecified Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/18993/info Microsoft PowerPoint is prone to multiple remote vulnerabilities. Three proof-of-concept exploit files designed to trigger vulnerabilities in PowerPoint have been released. It is currently unknown if these thre...

7.1AI score
Exploits0
Rows per page
Query Builder