Microsoft Word RTF listoverridecount Memory Corruption (MS14-017; CVE-2014-1761)

A memory corruption vulnerability exists in Microsoft Word. The vulnerability is due to improper handling of structures when parsing a specially crafted RTF document. Remote, unauthenticated attackers could exploit this vulnerability by enticing the target user to open a specially crafted RTF fil...

Microsoft Windows XP/95/98/2000/NT 4 Riched20.dll Attribute Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6874/info The riched20.dll is vulnerable to a buffer overflow that results in the application calling the library to fail. By creating a Rich Text Format RTF file with more than 65536 bytes of data in an attribute, the...

MS14-017 Microsoft Word RTF Object Confusion

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "MS14-017 Microsoft Word RTF Object Confusion", 'Description' = %q This module creates a malicious RTF file that when opened in...

MS14-017 Microsoft Word RTF Object Confusion

This module creates a malicious RTF file that when opened in vulnerable versions of Microsoft Word will lead to code execution. The flaw exists in how a listoverridecount field can be modified to treat one structure as another. This bug was originally seen being exploited in the wild starting in...

Microsoft Word RTF Stylesheet Control Word Memory Corruption - Ver2 (CVE-2008-4031)

A memory corruption vulnerability has been reported in Microsoft Office Word. The vulnerability is due to an error in Microsoft Word that fails to properly handle malformed Rich Text Format. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on t...

Microsoft Word RTF Drawing Primitives Remote Code Execution (MS08-072) - Ver2 (CVE-2008-4028)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...

Microsoft Word RTF Control Word Handling Integer Overflow (MS08-072) - Ver2 (CVE-2008-4025)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...

CVE-2014-1761

CVE-2014-1761 is a memory-corruption vulnerability in Microsoft Word triggered by crafted RTF data, allowing remote code execution or memory-corruption denial of service. Affected products include Word 2003 SP3, 2007 SP3, 2010 SP1/SP2, 2013 and 2013 RT, Word Viewer, Office Compatibility Pack SP3,...

Microsoft Word RTF Object Parsing Remote Code Execution (MS08-072) - Ver2 (CVE-2008-4027)

Microsoft Word is a popular word processing software. A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to a memory calculation error in Microsoft Word that fails to properly handle specially crafted control words in Rich Text Format .rtf files....

Microsoft Office RTF Mismatch Memory Corruption (MS12-029) - Ver2 (CVE-2012-0183)

A remote code execution vulnerability has been reported in Microsoft Office. The vulnerability is due to a memory corruption while parsing specially crafted RTF-formatted data. A remote attacker can exploit this issue by enticing a target user to open a specially crafted RTF file. Successful...

Remote File Manager 1.2 XSS / Local File Inclusion

Title: ====== Remote File Manager v1.2 iOS - Multiple Web Vulnerabilities Date: ===== 2013-02-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=882 VL-ID: ===== 882 Common Vulnerability Scoring System: ==================================== 6.1 Introduction: ============...

CVE-2012-2539

CVE-2012-2539 is Microsoft Word remote code execution vulnerability caused by parsing crafted RTF data (Word RTF 'listoverridecount'). It affects Word 2003 SP3, 2007 SP2/SP3, 2010 SP1; Word Viewer; Office Compatibility Pack SP2/SP3; and Office Web Apps 2010 SP1. The underlying issue is memory cor...

Microsoft Word RTF listoverridecount Remote Code Execution (MS12-079; CVE-2012-2539; CVE-2014-1761)

A remote code execution vulnerability has been reported in Microsoft Word. The vulnerability is due to an error in the way Word parses specially crafted Rich Text Format RTF data. A remote attacker can exploit this issue by enticing a target user to open a malicious Microsoft Office Document...

MS12-079: Vulnerability in Microsoft Word Could Allow Remote Code Execution (2780642)

The version of Office, Office Compatibility Pack, Microsoft Word Viewer, Microsoft Office Web Apps, and/or Microsoft Share Point Server installed on the remote host has a remote code execution vulnerability. This is due to the way that Microsoft Office software parses RTF data and could allow an...

Slackware Advisory SSA:2005-310-02 KOffice/KWord

The remote host is missing an update as announced via advisory SSA:2005-310-02. OpenVAS Vulnerability Test $Id: esoftslkssa200531002.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

Scientific Linux Security Update : openoffice.org on SL3.x i386/x86_64

A heap overflow flaw was found in the RTF import filer. An attacker could create a carefully crafted RTF file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the file was opened by a victim. CVE-2007-0245 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Scientific Linux Security Update : openoffice.org and openoffice.org2 on SL4.x i386/x86_64

An array index error and an integer signedness error were found in the way OpenOffice.org parsed certain Rich Text Format RTF files. An attacker could use these flaws to create a specially crafted RTF file that, when opened, would cause OpenOffice.org to crash or, possibly, execute arbitrary code...

LibreOffice 3.5.3 FileOpen Crash

?php ------------------------------------------------------------------------------ LibreOffice 3.5.3 - crash when FILEOPEN particular .rtf author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.altervista.org http://didasec.wordpress.com Tested on: Microsoft Windows 7 Profession...

LibreOffice < 3.5.3 RTF File Handling Remote Memory Corruption (Mac OS X)

A version of LibreOffice prior to 3.5.3 is installed on the remote Mac OS X host. It thus is reportedly affected by a memory corruption vulnerability in its handling of RTF files. By tricking a victim into opening a specially crafted RTF file, a remote attacker may be able to execute arbitrary co...

CVE-2012-0183

CVE-2012-0183 affects Microsoft Word 2003 SP3, Word 2007 SP2/SP3, Word 2008/2011 for Mac, and Office Compatibility Pack SP2/SP3. The vulnerability arises in parsing crafted RTF data, causing memory corruption that can allow remote code execution or denial of service. The issue is addressed by Mic...