Lucene search
K

19 matches found

Packet Storm
Packet Storm
added 2019/02/12 12:0 a.m.70 views

Microsoft Excel .SLK Payload Delivery

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Microsoft Excel .SLK Payload Delivery", 'Description' = %Q This module generates a download and execute Powershell command to be placed in an .SL...

Exploits0
Metasploit
Metasploit
added 2019/01/13 10:31 p.m.40 views

Microsoft Excel .SLK Payload Delivery

This module generates a download and execute Powershell command to be placed in an .SLK Excel spreadsheet. When executed, it will retrieve a payload via HTTP from a web server. When the file is opened, the user will be prompted to "Enable Content." Once this is pressed, the payload will execute...

0.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2015/07/23 8:37 a.m.12 views

autotrader.co.za XSS vulnerability

Vulnerable URL: http://www.autotrader.co.za/car-news/mercedes"-benz/slk-class/1103fd43-5c45-4787-8c67-70b936e5c306-mercedes-amggtandgts Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 21:36 GMT Vulnerability type:| XSS Vulnerability status:|...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

OpenOffice 3.1 - '.slk' File NULL Pointer Dereference Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37857/info OpenOffice is prone to a remote denial-of-service vulnerability caused by a NULL-pointer dereference. Attackers can exploit this issue by enticing an unsuspecting victim to open a specially crafted '.slk' file...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.19 views

Slackware: Security Advisory (SSA:2011-041-05)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS7.5AI score0.00496EPSS
Exploits0References2
Saint
Saint
added 2011/08/15 12:0 a.m.42 views

Microsoft Excel SLK File Parsing Buffer Overflow

Added: 08/15/2011 CVE: CVE-2011-1276 BID: 48161 OSVDB: 72924 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Office Excel is vulnerable to remote code execution due to improper boundary...

9.3CVSS9.7AI score0.28222EPSS
Exploits10
Saint
Saint
added 2011/08/15 12:0 a.m.56 views

Microsoft Excel SLK File Parsing Buffer Overflow

Added: 08/15/2011 CVE: CVE-2011-1276 BID: 48161 OSVDB: 72924 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Office Excel is vulnerable to remote code execution due to improper boundary...

9.3CVSS9.7AI score0.28222EPSS
Exploits10
Saint
Saint
added 2011/08/15 12:0 a.m.39 views

Microsoft Excel SLK File Parsing Buffer Overflow

Added: 08/15/2011 CVE: CVE-2011-1276 BID: 48161 OSVDB: 72924 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Office Excel is vulnerable to remote code execution due to improper boundary...

9.3CVSS9.7AI score0.28222EPSS
Exploits10
Check Point Advisories
Check Point Advisories
added 2011/06/09 12:0 a.m.31 views

Microsoft Excel SLK File Parsing Code Execution (MS11-045; CVE-2011-1276)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the SLK file format. A remote attacker could trigger this flaw by...

9.3CVSS7.1AI score0.28222EPSS
Exploits10
Check Point Advisories
Check Point Advisories
added 2011/06/09 12:0 a.m.22 views

Microsoft XML Editor Crafted Entity Information Disclosure (MS11-049; CVE-2011-1280)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the SLK file format. A remote attacker could trigger this flaw by...

4.3CVSS7.1AI score0.15254EPSS
Exploits1
securityvulns
securityvulns
added 2010/01/19 12:0 a.m.29 views

OpenOffice for Windows ".slk" File Parsing Null Pointer Vulnerability

Product: OpenOffice Tested Vulnerable Versions: 3.1.1 and 3.1.0 Vulnerability: Null Pointer Description: Hellcode Research discovered a null pointer vulnerability in Openoffice for Windows. Opening a malformed ".slk" file with Openoffice, causes a crash on "soffice.bin" PoC:...

1AI score
Exploits0
exploitpack
exploitpack
added 2010/01/19 12:0 a.m.17 views

OpenOffice - .slk Parsing Null Pointer

OpenOffice - .slk Parsing Null Pointer Product: OpenOffice Tested Vulnerable Versions: 3.1.1 and 3.1.0 Vulnerability: Null Pointer Description: Hellcode Research discovered a null pointer vulnerability in Openoffice for Windows. Opening a malformed ".slk" file with Openoffice, causes a crash on...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/01/19 12:0 a.m.9 views

OpenOffice 3.1 - .slk Null Pointer Dereference Remote Denial of Service

OpenOffice 3.1 - .slk Null Pointer Dereference Remote Denial of Service source: https://www.securityfocus.com/bid/37857/info OpenOffice is prone to a remote denial-of-service vulnerability caused by a NULL-pointer dereference. Attackers can exploit this issue by enticing an unsuspecting victim to...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2010/01/19 12:0 a.m.18 views

OpenOffice 3.1 - '.slk' Null Pointer Dereference Remote Denial of Service

source: https://www.securityfocus.com/bid/37857/info OpenOffice is prone to a remote denial-of-service vulnerability caused by a NULL-pointer dereference. Attackers can exploit this issue by enticing an unsuspecting victim to open a specially crafted '.slk' file. Successful exploits will cause th...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2010/01/19 12:0 a.m.26 views

OpenOffice NULL pointer dereference

NULL pointer dereference on CSV and SLK files parsing...

3.2AI score
Exploits0References2Affected Software1
Prion
Prion
added 2008/03/11 11:44 p.m.17 views

Design/Logic Flaw

Unspecified vulnerability in Microsoft Excel 2000 SP3, and Office for Mac 2004 and 2008 allows user-assisted remote attackers to execute arbitrary code via a crafted .SLK file that is not properly handled when importing the file, aka "Excel File Import Vulnerability."...

9.3CVSS7.6AI score0.32235EPSS
Exploits1References7Affected Software2
NVD
NVD
added 2008/03/11 11:44 p.m.21 views

CVE-2008-0112

Unspecified vulnerability in Microsoft Excel 2000 SP3, and Office for Mac 2004 and 2008 allows user-assisted remote attackers to execute arbitrary code via a crafted .SLK file that is not properly handled when importing the file, aka "Excel File Import Vulnerability."...

9.3CVSS7.4AI score0.32235EPSS
Exploits1References7
Cvelist
Cvelist
added 2008/03/11 11:0 p.m.23 views

CVE-2008-0112

Unspecified vulnerability in Microsoft Excel 2000 SP3, and Office for Mac 2004 and 2008 allows user-assisted remote attackers to execute arbitrary code via a crafted .SLK file that is not properly handled when importing the file, aka "Excel File Import Vulnerability."...

9.5AI score0.32235EPSS
Exploits1References7
CVE
CVE
added 2008/03/11 11:0 p.m.59 views

CVE-2008-0112

CVE-2008-0112 (Excel File Import Vulnerability) describes a remote code execution in Microsoft Excel 2000 SP3 and Office for Mac 2004/2008 triggered by importing a specially crafted SYLK (.slk) file. The underlying issue is improper validation/handling of SYLK data during import, allowing an atta...

9.3CVSS9.5AI score0.32235EPSS
Exploits1References7Affected Software2
Rows per page
Query Builder