790 matches found
Integer overflow
Integer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format...
Memory corruption
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1 allow remote attackers to execute arbitrary code via crafted control...
Heap overflow
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac...
Memory corruption
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac...
CVE-2008-4028
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac...
CVE-2008-4025
Integer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format...
CVE-2008-4027
Double free vulnerability in Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; and Office 2004 for Mac allow remote attacker...
CVE-2008-4031
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac...
CVE-2008-4028
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac...
CVE-2008-4030
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1 allow remote attackers to execute arbitrary code via crafted control...
CVE-2008-4031
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac...
CVE-2008-4031
CVE-2008-4031 is a remote code execution vulnerability in Microsoft Office Word/Word components caused by a memory corruption during parsing of Rich Text Format (RTF) content. The issue can be triggered when a user opens a specially crafted RTF file or previews a malicious RTF email, potentially ...
CVE-2008-4030
CVE-2008-4030 corresponds to a memory-corruption remote code execution issue in Microsoft Office Word (various versions) triggered by crafted control words in Rich Text Format (RTF) files or in RTF emails. Connected advisories attribute the vulnerability to a memory calculation error in Word that...
CVE-2008-4028
CVE-2008-4028 is described in connected advisories as a Word RTF Object Parsing memory corruption/heap overflow vulnerability. It affects Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, 2007 Gold/SP1; Word Viewer 2003; Office Compatibility Pack for Word/Excel/PowerPoint 2007 File Formats Gold...
CVE-2008-4027
CVE-2008-4027 is a remote code execution vulnerability in Microsoft Word/Office applications caused by parsing malformed Rich Text Format (RTF) files. The flaw arises from mishandling consecutive Drawing Object ("\do") tags, leading to memory corruption and potential arbitrary code execution. Aff...
CVE-2008-4025
CVE-2008-4025 corresponds to a set of Word/RTF parsing vulnerabilities (word memory/RTF object parsing) in Office products where an integer overflow during RTF/Polyline point processing can trigger a heap-based buffer overflow and remote code execution. Affected software includes Word 2000 SP3, 2...
Microsoft Word中的RTF多个图形对象标记远程代码执行漏洞
Microsoft Word is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious RTF file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in user. Microsoft...
Microsoft Word RTF '\do' 图形对象的远程堆内存溢出漏洞(MS08-072)
Microsoft Word is prone to a remote heap memory-corruption vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious RTF file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in user...
ZDI-08-085: Microsoft Office RTF Drawing Object Heap Overflow Vulnerability
ZDI-08-085: Microsoft Office RTF Drawing Object Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-085 December 9, 2008 -- CVE ID: CVE-2008-4028 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Outlook -- TippingPointTM IPS Customer...
ZDI-08-084: Microsoft Office RTF Consecutive Drawing Object Parsing Heap Corruption Vulnerability
ZDI-08-084: Microsoft Office RTF Consecutive Drawing Object Parsing Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-084 December 9, 2008 -- CVE ID: CVE-2008-4027 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Outlook --...