790 matches found
CVE-2015-0086
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold and SP1, Word 2013 RT Gold and SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 Gold and SP1, Web Applications 2010 SP...
Microsoft Word 2007 - RTF Object Confusion (ASLR + DEP Bypass)
Title : Microsoft Office Word 2007 - RTF Object Confusion ASLR and DEP bypass Date : 28/02/2015 Author : R-73eN Software : Microsoft Office Word 2007 Tested : Windows 7 Starter import sys Windows Message Box / all versions . Thanks to Giuseppe D'amore for the shellcode . shellcode =...
Microsoft Word 2007 - RTF Object Confusion (ASLR + DEP Bypass)
Microsoft Word 2007 - RTF Object Confusion ASLR + DEP Bypass Title : Microsoft Office Word 2007 - RTF Object Confusion ASLR and DEP bypass Date : 28/02/2015 Author : R-73eN Software : Microsoft Office Word 2007 Tested : Windows 7 Starter import sys Windows Message Box / all versions . Thanks to...
LibreOffice memory corruption
Memory corruption on RTF parsing...
[SECURITY] [DSA 3163-1] libreoffice security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3163-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini February 19, 2015 http://www.debian.org/security/faq -...
Debian DSA-3163-1 : libreoffice - security update
It was discovered that LibreOffice, an office productivity suite, could try to write to invalid memory areas when importing malformed RTF files. This could allow remote attackers to cause a denial of service crash or arbitrary code execution via crafted RTF files. %NASLMINLEVEL 70300 C Tenable...
[SECURITY] [DSA 3163-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3163-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini February 19, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3163-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3163-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini February 19, 2015 http://www.debian.org/security/faq -...
DSA-3163-1 libreoffice - security update
Bulletin has no description...
[SECURITY] [DSA 3158-1] unrtf security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3158-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 09, 2015 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 3158-1 (unrtf - security update)
Michal Zalewski and Hanno Boeck discovered several vulnerabilities in unrtf, a RTF to other formats converter, leading to a denial of service application crash or, potentially, the execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb3158.nasl 6609 2017-07-07 12:05:59Z cfischer $...
DSA-3158-1 unrtf - security update
Bulletin has no description...
Office-2008-sp0-RTF-Pfragments-MAC-Exploit
RTF Pfragments exploit for MAC office 2008 Author Abhishek Lyall - abhilyallatgmaildotcom, infoataslitsecuritydotcom Advanced Hacking Trainings - http://training.aslitsecurity.com Web - http://www.aslitsecurity.com/...
LibreOffice < 4.2.8 / 4.3.5 RTF File Handling Code Execution
The version of LibreOffice installed on the remote Windows host is prior to 4.2.7 or 4.3.x prior to 4.3.5. It is, therefore, affected by an invalid memory write vulnerability. An attacker, using a specially crafted Rich Text Format RTF file, can exploit this to cause a denial of service or possib...
unrtf memory corruption
Memory corruption on RTF parsing...
MGASA-2015-0016 Updated unrtf package fixes security vulnerability
Updated unrtf package fixes security vulnerability: Hanno Böck also reported a number of other crashes in unrtf besides the ones associated with CVE-2014-9275. These could allow a denial of service when opening a malicious malformed RTF file which causes unrtf to crash...
Updated unrtf package fixes security vulnerability
Updated unrtf package fixes security vulnerability: Hanno Böck also reported a number of other crashes in unrtf besides the ones associated with CVE-2014-9275. These could allow a denial of service when opening a malicious malformed RTF file which causes unrtf to crash...
Office-2008-sp0-RTF-Pfragments
RTF Pfragments exploit for MAC office 2008 Advanced Hacking Trainings - http://training.aslitsecurity.com Web - http://www.aslitsecurity.com/ Blog - http://www.aslitsecurity.blogspot.com/ Office 2007 for MC SP 0 myfile = "\x7b\x5c\x72\x74\x66\x31\x7b\x5c\x73\x68\x70\x7b\x5c\x73\x70\x7b"...
[SECURITY] Fedora 21 Update: unrtf-0.21.7-1.fc21
UnRTF is a command-line program written in C which converts documents in Rich Text Format .rtf to HTML, LaTeX, troff macros, and RTF itself. Converting to HTML, it supports a number of features of Rich Text Format: Changes in the text's font, size, weight bold, and slant italic Underlines and...
unrtf: arbitrary code execution
CVE-2014-9274 arbitrary code execution A flaw allows remote attackers to cause a denial of service crash and possibly execute arbitrary code as demonstrated by a file containing the string "\cb-999999999". - CVE-2014-9275 arbitrary code execution A flaw allows remote attackers to cause a denial...