EUVD-2018-17523

Malware in sbrugna...

CVE-2022-26511

WPS Presentation 11.8.0.5745 insecurely load d3dx941.dll when opening .pps files'current directory type' DLL loading...

XML External Entity Expansion

openoffice.org is vulnerable to XML External Entity expansion. If OpenOffice.org were to open a specially-crafted file such as an OpenDocument Format or OpenDocument Presentation file, it could possibly allow a remote attacker to obtain a copy of an arbitrary local file that the user running...

CVE-2018-5754

Cross-site scripting XSS vulnerability in the office-web component in Open-Xchange OX App Suite before 7.8.3-rev12 and 7.8.4 before 7.8.4-rev9 allows remote attackers to inject arbitrary web script or HTML via a crafted presentation file, related to copying content to the clipboard...

Cross site scripting

Cross-site scripting XSS vulnerability in the office-web component in Open-Xchange OX App Suite before 7.8.3-rev12 and 7.8.4 before 7.8.4-rev9 allows remote attackers to inject arbitrary web script or HTML via a crafted presentation file, related to copying content to the clipboard...

CVE-2018-5754

Cross-site scripting XSS vulnerability in the office-web component in Open-Xchange OX App Suite before 7.8.3-rev12 and 7.8.4 before 7.8.4-rev9 allows remote attackers to inject arbitrary web script or HTML via a crafted presentation file, related to copying content to the clipboard...

Memory Corruption Vulnerability in WPS Office 2016 Presentation (CNVD-2018-04909)

WPS office is an office software suite independently developed by Kingsoft Corporation. A memory corruption vulnerability exists in WPS presentation wpp.exe in WPS when parsing a specific pptx file, which can be exploited by an attacker to cause a denial of service attack or code execution...

Stack Overflow Vulnerability in WPS Office 2016 Presentation

WPS office is an office software suite independently developed by Kingsoft Corporation. A stack overflow vulnerability exists in WPS presentation wpp.exe in WPS when parsing a specific pptx file, which can be exploited by an attacker to cause a denial of service attack...

WPS Office 2016 demo wppmain module suffers from null pointer reference vulnerability

WPS office is an office software suite independently developed by Kingsoft Corporation. A null pointer reference vulnerability exists in the wppmain module of the WPS presentation wpp.exe in WPS when parsing a specific pptx file, which can be exploited by an attacker to cause a denial of service...

WPS Demo wppmain module has a null pointer reference vulnerability

WPS Office is an office software suite developed independently by Kingsoft Corporation. A null pointer reference vulnerability exists in the wppmain module of WPS Presentation wpp.exe in WPS when parsing a specific ppt file, which can be exploited by an attacker to cause a denial of service or ca...

Microsoft Windows GDI Information Disclosure (MS16-146: CVE-2016-7257)

An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in memory. A remote attacker could exploit this vulnerability by enticing a target user to open a malicious presentation file. Successful exploitation of this issue can lead to...

Microsoft Powerpoint Remote Code Execution Vulnerability

Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. This issue occurs when the application handles malformed record data within a presentation file. A successful exploit of this issue will let attackers execute arbitrary code in the context of the targeted user...