Lucene search
K

52 matches found

NVD
NVD
added 2015/03/11 10:59 a.m.19 views

CVE-2015-0086

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold and SP1, Word 2013 RT Gold and SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 Gold and SP1, Web Applications 2010 SP...

9.3CVSS7.6AI score0.14943EPSS
Exploits0References2
CVE
CVE
added 2015/03/11 10:0 a.m.68 views

CVE-2015-0086

CVE-2015-0086 affects Microsoft Office/Word products including Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold/SP1, Word 2013 RT Gold/SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Serve...

9.3CVSS7.6AI score0.14943EPSS
Exploits0References2Affected Software7
Cvelist
Cvelist
added 2015/03/11 10:0 a.m.29 views

CVE-2015-0086

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold and SP1, Word 2013 RT Gold and SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 Gold and SP1, Web Applications 2010 SP...

7.4AI score0.14943EPSS
Exploits0References2
FireEye
FireEye
added 2014/06/24 10:0 a.m.52 views

Turing Test in Reverse: New Sandbox-Evasion Techniques Seek Human Interaction

Last year, we published a paper titled Hot Knives Through Butter, Evading File-Based Sandboxes. In this paper, we explained many sandbox evasion methods--and today's blog post adds to our growing catalog. In the past, for example, we detailed the inner workings of a Trojan we dubbed UpClicker. Th...

0.1AI score
Exploits0
NVD
NVD
added 2013/03/05 5:5 a.m.16 views

CVE-2013-0710

Buffer overflow in Kingsoft Writer 2007 and 2010 before 2724 allows remote attackers to execute arbitrary code via a crafted RTF document...

9.3CVSS7.8AI score0.04273EPSS
Exploits1References4
Prion
Prion
added 2013/03/05 5:5 a.m.13 views

Buffer overflow

Buffer overflow in Kingsoft Writer 2007 and 2010 before 2724 allows remote attackers to execute arbitrary code via a crafted RTF document...

9.3CVSS8.4AI score0.04273EPSS
Exploits1References4Affected Software1
Kaspersky
Kaspersky
added 2013/03/05 12:0 a.m.54 views

KLA10237 ACE vulnerability in Kingsoft Writer

A buffer overflow was found in Kingsoft Writer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed RTF document. Original advisories Kingsoft bulletin Related products Kingsoft-Writer CVE list...

9.3CVSS7.9AI score0.04273EPSS
Exploits1References3
CVE
CVE
added 2013/03/02 6:0 p.m.52 views

CVE-2013-0710

CVE-2013-0710 affects Kingsoft Writer 2007 and 2010 (prior to version 2724). The vulnerability is a buffer overflow triggered when opening a crafted RTF document, allowing remote arbitrary code execution. A patch/update to the latest version (2724 or newer) is available per advisories; apply the ...

9.3CVSS8AI score0.04273EPSS
Exploits1References4Affected Software2
Cvelist
Cvelist
added 2013/03/02 6:0 p.m.19 views

CVE-2013-0710

Buffer overflow in Kingsoft Writer 2007 and 2010 before 2724 allows remote attackers to execute arbitrary code via a crafted RTF document...

7.8AI score0.04273EPSS
Exploits1References4
Prion
Prion
added 2013/02/13 12:4 p.m.19 views

Remote code execution

Object Linking and Embedding OLE Automation in Microsoft Windows XP SP3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted RTF document, aka "OLE Automation Remote Code Execution Vulnerability."...

9.3CVSS8.2AI score0.22701EPSS
Exploits0References4
CVE
CVE
added 2013/02/13 11:0 a.m.149 views

CVE-2013-1313

CVE-2013-1313 corresponds to an OLE Automation use-after-parse in Windows XP SP3 where memory misallocation enables remote code execution via a crafted RTF document. Connected advisories note this as a code-execution vulnerability in Windows Common Controls (OLE) with remote impact. Mitigation pe...

9.3CVSS7.9AI score0.22701EPSS
Exploits0References4Affected Software1
The Hacker News
The Hacker News
added 2012/12/12 2:52 a.m.17 views

Microsoft security bulletins for December 2012

With the release of the Microsoft security bulletins for December 2012, Company flag total 7 updates for Windows users, where one is rated as critical that could lead to remote code execution, where as other two are rated as important which fix flaws that could result in the operating system's...

8AI score
Exploits0
NVD
NVD
added 2012/10/09 9:55 p.m.25 views

CVE-2012-2528

Use-after-free vulnerability in Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; Word Automation Services on Microsoft SharePoint Server 2010; and Office Web Apps 2010 SP1 allows remote attackers to execute arbitrary code via a crafted R...

9.3CVSS7.4AI score0.22117EPSS
Exploits1References4
Prion
Prion
added 2012/10/09 9:55 p.m.23 views

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; Word Automation Services on Microsoft SharePoint Server 2010; and Office Web Apps 2010 SP1 allows remote attackers to execute arbitrary code via a crafted R...

9.3CVSS7.9AI score0.22117EPSS
Exploits1References4Affected Software2
CVE
CVE
added 2012/10/09 9:0 p.m.156 views

CVE-2012-2528

CVE-2012-2528 is a use-after-free remote code execution vulnerability in Microsoft Word and related components triggered by specially crafted RTF documents. Affected products include Word 2003 SP3, Word 2007 SP2/SP3, Word 2010 SP1, Word Viewer, Office Compatibility Pack SP2/SP3, Word Automation S...

9.3CVSS7.5AI score0.22117EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2011/01/28 10:0 p.m.18 views

CVE-2010-3451

Use-after-free vulnerability in oowriter in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via malformed tables in an RTF document...

9.3CVSS7.2AI score0.10274EPSS
Exploits0References24
Prion
Prion
added 2011/01/28 10:0 p.m.21 views

Design/Logic Flaw

Use-after-free vulnerability in oowriter in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via malformed tables in an RTF document...

9.3CVSS8.4AI score0.10274EPSS
Exploits0References24Affected Software3
Prion
Prion
added 2011/01/28 10:0 p.m.23 views

Design/Logic Flaw

Use-after-free vulnerability in oowriter in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted tags in an RTF document...

9.3CVSS8.4AI score0.10274EPSS
Exploits0References24Affected Software3
Cvelist
Cvelist
added 2011/01/28 9:13 p.m.22 views

CVE-2010-3452

Use-after-free vulnerability in oowriter in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted tags in an RTF document...

7.1AI score0.10274EPSS
Exploits0References24
CVE
CVE
added 2011/01/28 9:13 p.m.128 views

CVE-2010-3452

CVE-2010-3452 is a use-after-free in OpenOffice.org’s oowriter that can crash the application or, potentially, allow arbitrary code execution via crafted RTF tags. Affected: OpenOffice.org 2.x/3.x before 3.3. Remediation: apply vendor security updates; advisories from multiple vendors (openSUSE/S...

9.3CVSS7AI score0.10274EPSS
Exploits0References24Affected Software1
Rows per page
Query Builder