10 matches found
Exploit for Use After Free in Microsoft
LetsDefend SOC336: Windows OLE Zero-Click RCE Exploitation Det...
Flaw in Microsoft Outlook Lets Hackers Easily Steal Your Windows Password
A security researcher has disclosed details of an important vulnerability in Microsoft Outlook for which the company released an incomplete patch this month—almost 18 months after receiving the responsible disclosure report. The Microsoft Outlook vulnerability CVE-2018-0950 could allow attackers ...
Security Updates for Microsoft Office Compatibility Products (April 2018)
The Microsoft Office Compatibility Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Office renders Rich Text Format RTF email messages containing OLE objects when a message is opened or previewed...
Microsoft Outlook retrieves remote OLE content without prompting
Overview When a Rich Text RTF email is previewed in Microsoft Outlook, remotely-hosted OLE content is retrieved without requiring any additional user interaction. This can leak private information including the user's password hash, which may be cracked by an attacker. Description Microsoft Outlo...
Microsoft Windows Media Player 7 Embedded OCX Control Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1714/info Due to a flaw in the method Microsoft Windows Media Player 7 handles OCX controls ActiveX containers in embedded in RTF email messages, it is possible to crash RTF-enabled email clients such as Microsoft Outlook...
Microsoft Security Bulletin MS10-087 - Critical Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2423930)
Microsoft Security Bulletin MS10-087 - Critical Vulnerabilities in Microsoft Office Could Allow Remote Code Execution 2423930 Published: November 09, 2010 Version: 1.0 General Information Executive Summary This security update resolves one publicly disclosed vulnerability and four privately...
Malformed Embedded Windows Media Player 7 "OCX Attachment" Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Malformed Embedded Windows Media Player 7 "OCX Attachment" Vulnerability USSR Advisory Code: USSR-2000053 Public Disclosure Date: September 26, 2000 Vendors Affected: Microsoft Corporation http://www.microsoft.com Systems Affected: Outlook 2000...
Microsoft Windows Media Player 7 - Embedded OCX Control
Microsoft Windows Media Player 7 - Embedded OCX Control source: https://www.securityfocus.com/bid/1714/info Due to a flaw in the method Microsoft Windows Media Player 7 handles OCX controls ActiveX containers in embedded in RTF email messages, it is possible to crash RTF-enabled email clients suc...
Microsoft Windows Media Player 7 - Embedded OCX Control
source: https://www.securityfocus.com/bid/1714/info Due to a flaw in the method Microsoft Windows Media Player 7 handles OCX controls ActiveX containers in embedded in RTF email messages, it is possible to crash RTF-enabled email clients such as Microsoft Outlook and Outlook Express. While this...
Security update 1970-01-01
...