Microsoft Office Publisher pubconv.dll Size Value Heap Corruption (MS10-103) - Ver2 (CVE-2010-2569)

Microsoft Publisher is a desktop publishing application for creating marketing materials, managing customer lists and more. The vulnerability is due to an error in pubconv.dll, Publisher Converter DLL that is used to open Publisher files created in versions earlier than Microsoft Publisher 2007. ...

Microsoft Office Publisher Remote Code Execution Vulnerability (2950145)

This host is missing an important security update according to Microsoft Bulletin MS14-020. OpenVAS Vulnerability Test $Id: gbms14-020.nasl 6715 2017-07-13 09:57:40Z teissa $ Microsoft Office Publisher Remote Code Execution Vulnerability 2950145 Authors: Antu Sanadi Copyright: Copyright C 2014...

Microsoft Office Publisher Remote Code Execution Vulnerability (2950145)

This host is missing an important security update according to Microsoft Bulletin MS14-020. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2014-1759

CVE-2014-1759 affects Microsoft Publisher 2003 SP3 and Publisher 2007 SP3 via the pubconv.dll component. The root cause is an (uninitialized/incorrect) pointer dereference when parsing crafted .pub files, enabling remote code execution or causing application crash (DoS). The vulnerability is trac...

CORE-2011-0106: Microsoft Publisher 2007 Pubconv.dll Memory Corruption

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - Corelabs Advisory http://corelabs.coresecurity.com/ Microsoft Publisher 2007 Pubconv.dll Memory Corruption 1. Advisory Information Title: Microsoft Publisher 2007 Pubconv.dll Memory Corruption Advisory ID: CORE-2011-0106...

Microsoft Publisher 2007 Pubconv.dll内存破坏漏洞

CVE ID: CVE-2011-1508 Microsoft Publisher是微软公司发行的桌面出版应用软件。 Publisher 2007中存在输入验证错误，可被远程攻击者利用通过诱使用户在文档中插入特制的.pub文件执行任意代码。 通过修改.pub文件，可使pubconv.dll库复制很多文件内容到栈中，从而覆盖稍后执行的函数指针。 Microsoft Publisher 2007 12.0.6546.5000 厂商补丁： Microsoft --------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Microsoft Publisher 2007 Pubconv.dll Memory Corruption

Core Security Technologies - Corelabs Advisory Microsoft Publisher 2007 Pubconv.dll Memory Corruption 1. Advisory Information Title: Microsoft Publisher 2007 Pubconv.dll Memory Corruption Advisory ID: CORE-2011-0106 Advisory URL:...

CVE-2010-2569

pubconv.dll aka the Publisher Converter DLL in Microsoft Publisher 2002 SP3, 2003 SP3, and 2007 SP2 does not properly handle an unspecified size field in certain older file formats, which allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a...

Design/Logic Flaw

pubconv.dll aka the Publisher Converter DLL in Microsoft Publisher 2002 SP3, 2003 SP3, and 2007 SP2 does not properly handle an unspecified size field in certain older file formats, which allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a...

Memory corruption

Array index error in pubconv.dll aka the Publisher Converter DLL in Microsoft Publisher 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher 97 file, aka "Memory Corruption Due To Invalid Index Into Array in Pubconv.dll Vulnerability."...

Memory corruption

pubconv.dll aka the Publisher Converter DLL in Microsoft Publisher 2002 SP3 does not properly perform array indexing, which allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Array Indexing Memory Corruption Vulnerability."...

CVE-2010-3955

CVE-2010-3955 concerns a memory corruption in Microsoft Publisher 2002 SP3 caused by an array indexing error in pubconv.dll (Publisher Converter DLL). A crafted Publisher file can trigger this vulnerability, enabling remote code execution on the affected system. Microsoft addressed this with secu...

CVE-2010-2571

Array index error in pubconv.dll aka the Publisher Converter DLL in Microsoft Publisher 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher 97 file, aka "Memory Corruption Due To Invalid Index Into Array in Pubconv.dll Vulnerability."...

CVE-2010-3955

pubconv.dll aka the Publisher Converter DLL in Microsoft Publisher 2002 SP3 does not properly perform array indexing, which allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Array Indexing Memory Corruption Vulnerability."...

CVE-2010-2569

CVE-2010-2569 concerns a heap corruption flaw in pubconv.dll (Publisher Converter DLL) used by Microsoft Publisher 2002 SP3, 2003 SP3, and 2007 SP2. The vulnerability occurs when Publisher files with an unspecified or mis-sized value are parsed, potentially enabling remote code execution or a den...

CVE-2010-2571

CVE-2010-2571 is a memory corruption vulnerability in Microsoft Publisher 2002 SP3 and Microsoft Publisher 2003 SP3 caused by an array indexing error in the pubconv.dll (Publisher Converter DLL) when processing malformed Publisher 97 files. It enables remote code execution if a user opens a craft...

CVE-2010-2569

pubconv.dll aka the Publisher Converter DLL in Microsoft Publisher 2002 SP3, 2003 SP3, and 2007 SP2 does not properly handle an unspecified size field in certain older file formats, which allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a...

CVE-2010-2570

CVE-2010-2570 : A heap-based buffer overflow in pubconv.dll (Publisher Converter DLL) of Microsoft Publisher affects 2002 SP3, 2003 SP3, 2007 SP2, and 2010. A crafted Publisher file using an old format can trigger arbitrary code execution remotely. The issue is documented under MS10-103, which pr...

VUPEN Security Research - Microsoft Office Publisher "pubconv.dll" Array Indexing Vulnerability (VUPEN-SR-2010-206)

VUPEN Security Research - Microsoft Office Publisher "pubconv.dll" Array Indexing Vulnerability VUPEN-SR-2010-206 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Publisher, is a desktop publishing application from Microsoft. It is an entry-level applicatio...

Microsoft Office Publisher pubconv.dll Size Value Heap Corruption (MS10-103; CVE-2010-2569)

Microsoft Publisher is a desktop publishing application for creating marketing materials, managing customer lists and more. The vulnerability is due to an error in pubconv.dll, Publisher Converter DLL that is used to open Publisher files created in versions earlier than Microsoft Publisher 2007. ...