790 matches found
CVE-2007-1512
The CVE-2007-1512 entry describes a stack-based overflow in the MFC component (AfxOleSetEditMenu) of MFC42u.dll when processing an RTF file with a malformed embedded OLE object. This affects Windows 2000 SP4, XP SP2, and Server 2003 SP1/Gold, and Visual Studio .NET 2000/2002/2003 families. The ov...
Microsoft MFC memory corruption
Memory corruption on RTF files parsing. Can be used for hidden malware installation...
Microsoft Office和Windows RichEdit组件内存破坏漏洞(MS07-014)
Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows和Microsoft Office所捆绑的RichEdit组件中存在一个远程执行代码漏洞。中存在一个远程执行代码漏洞。当用户与RTF文件中的畸形嵌入OLE对象进行交互时,就可能导致内存破坏,在用户系统上执行任意代码。 成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。要利用此漏洞,需要进行用大量的户交互。 Microsoft...
Microsoft Windows OLE Dialog内存破坏漏洞(MS07-011)
Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows提供的OLE Dialog组件中存在一个远程执行代码漏洞。当用户与RTF文件中的畸形嵌入OLE对象进行交互时,就可能导致内存破坏,在用户系统上执行任意代码。 成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。要利用此漏洞,需要进行用大量的户交互。 Microsoft Windows XP SP2 Microsoft Windows...
Microsoft Windows MFC嵌入OLE对象内存破坏漏洞(MS07-012)
Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows提供的MFC组件中存在一个远程执行代码漏洞。当用户与RTF文件中的畸形嵌入OLE对象进行交互时,就可能导致内存破坏,在用户系统上执行任意代码。 成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。要利用此漏洞,需要进行用大量的户交互。 Microsoft Windows XP SP2 Microsoft Windows Server...
Microsoft Windows Malformed RTF Handling Code Execution (MS07-011; CVE-2006-1311; CVE-2007-0025; CVE-2007-0026)
Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. By...
Microsoft MFC component vulnerable to remote code execution via malformed embedded OLE object
Overview A memory corruption vulnerability exists in the MFC component that is provided with Microsoft Windows and Visual Studio Description The Microsoft Foundation Class Library MFC, is a Microsoft library that wraps parts of the Windows API in C++ classes. MFC is included in Microsoft Visual...
Microsoft Windows fails to properly handle malformed OLE objects embedded in RTF documents
Overview A vulnerability in the way that Microsoft Windows handles OLE objects embedded within RTF documents may allow an attacker to execute arbitrary code. Description Microsoft Object Linking and Embedding OLE is a technology that allows applications to create and edit compound documents...
Microsoft RichEdit vulnerable to remote code execution via malformed embedded OLE object
Overview Microsoft's RichEdit contains a vulnerability that may allow an attacker to execute code. Description From Murray Sargent's MSDN blog:RichEdit 6.0 is a facility for getting plain/rich-text, single/multiline Unicode/ANSI edit controls and combo/list boxes in single world-wide binary that...
Stack overflow
The MFC component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 and Visual Studio .NET 2000, 2002 SP1, 2003, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption. NOTE: this might be due to a...
Memory corruption
The OLE Dialog component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption...
Memory corruption
The RichEdit component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1; Office 2000 SP3, XP SP3, 2003 SP2, and Office 2004 for Mac; and Learning Essentials for Microsoft Office 1.0, 1.1, and 1.5 allows user-assisted remote attackers to execute arbitrary code via a malformed OLE object in an R...
CVE-2007-0025
The MFC component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 and Visual Studio .NET 2000, 2002 SP1, 2003, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption. NOTE: this might be due to a...
CVE-2007-0026
The OLE Dialog component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption...
CVE-2007-0025
The MFC component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 and Visual Studio .NET 2000, 2002 SP1, 2003, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption. NOTE: this might be due to a...
CVE-2007-0026
The OLE Dialog component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption...
CVE-2007-0025
The CVE-2007-0025 family describes a stack-based buffer overflow in the MFC component (AfxOleSetEditMenu) of the MFC42u.dll used by Windows 2000 SP4, XP SP2, Server 2003 SP1, and Visual Studio .NET 2000/2002/2003/2003 SP1. A malformed OLE object in an RTF file triggers memory corruption, enabling...
CVE-2006-1311
The RichEdit component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1; Office 2000 SP3, XP SP3, 2003 SP2, and Office 2004 for Mac; and Learning Essentials for Microsoft Office 1.0, 1.1, and 1.5 allows user-assisted remote attackers to execute arbitrary code via a malformed OLE object in an R...
Microsoft Windows OLE Dialog Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability that occurs when the application attempts to parse malformed Rich Text Files RTF. An attacker could exploit this issue by enticing a victim to load a malicious RTF file. If the vulnerability is successfully exploited,...
Microsoft Windows OLE dialog memory corruption
Memory corruption on RTF-embedded OLE object. Can be used for hideen malware installation...