7 matches found
SUSE CVE-2006-3014
Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users to arbitrary sites via an Excel spreadsheet with an embedded Shockwave Flash Player ActiveX Object, which is automatically executed when the user opens the spreadsheet...
Microsoft Office - OLE Multiple DLL Side Loading Vulnerabilities (MS15-132/MS16-014/MS16-025/MS16-04
Exploit for windows platform in category local exploits require 'zip' require 'base64' require 'msf/core' require 'rex/ole' class MetasploitModule 'Office OLE Multiple DLL Side Loading Vulnerabilities', 'Description' = %q Multiple DLL side loading vulnerabilities were found in various COM...
Microsoft Office - OLE Multiple DLL Side Loading Vulnerabilities (MS15-132/MS16-014/MS16-025/MS16-041/MS16-070) (Metasploit)
require 'zip' require 'base64' require 'msf/core' require 'rex/ole' class MetasploitModule 'Office OLE Multiple DLL Side Loading Vulnerabilities', 'Description' = %q Multiple DLL side loading vulnerabilities were found in various COM components. These issues can be exploited by loading various...
Microsoft Office 2003 Embedded Shockwave Flash Object Security Bypass Weakness
No description provided by source. source: http://www.securityfocus.com/bid/18583/info Microsoft Office is prone to a weakness that may allow remote attackers to execute arbitrary script code contained in Shockwave Flash Objects without first requiring confirmation from users. A successful attack...
Microsoft Internet Explorer 678 - Shockwave Flash Object Denial of Service
Microsoft Internet Explorer 678 - Shockwave Flash Object Denial of Service Version: 6/7/8 Tested on: Windows XP SP3 English & Windows 7 CVE : Code: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/11182.tar.gz iecrash.tar.gz Description: Modified 1360. byte to 44...
Microsoft Internet Explorer 6/7/8 - Shockwave Flash Object Denial of Service
Version: 6/7/8 Tested on: Windows XP SP3 English & Windows 7 CVE : Code: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/11182.tar.gz iecrash.tar.gz Description: Modified 1360. byte to 44, 1361. to 43, 1362. 42, 1363. byte to 41 of a sample swf file, ran it and...
Microsoft Office嵌入Shockwave Flash对象绕过安全限制漏洞(MS06-069)
Microsoft Excel是非常流行的电子表格办公软件。 Microsoft Excel对文件中的对象处理存在漏洞,攻击者可能利用此漏洞在用户机器上执行任意指令。 攻击可以使用Shockwave Flash Object将有Java脚本的恶意Flash文件嵌入到Excel表单中,这样如果用户打开了该文件的话便无需用户交互便自动运行该对象。 Microsoft Excel 2003 Microsoft Office 2003 Microsoft已经为此发布了一个安全公告(MS06-069)以及相应补丁: MS06-069:Vulnerabilities in Macromedia...