Lucene search
K

989 matches found

Check Point Advisories
Check Point Advisories
added 2009/11/10 12:0 a.m.6 views

Microsoft Office Excel SxView Record Memory Corruption (MS09-067; CVE-2009-3128)

Microsoft Excel is a popular spreadsheet application. A memory corruption vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. A remote attacker could trigger this flaw ...

9.3CVSS6.9AI score0.24879EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/11/10 12:0 a.m.4 views

Microsoft Office Excel Field Sanitization Remote Code Execution (MS09-067; CVE-2009-3134)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. A remote attacker could trigger this...

9.3CVSS7.2AI score0.25777EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2009/11/10 12:0 a.m.22 views

Microsoft Office Excel Legacy Files (CVE-2009-3131; CVE-2010-1251; CVE-2010-1252; CVE-2010-3230)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse Office Excel legacy files. A remote attacker could trigger this flaw by...

9.3CVSS7.1AI score0.24879EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/09/22 12:0 a.m.5 views

Microsoft Excel SST Record Integer Overflow (MS09-021; CVE-2009-0561; CVE-2009-3037)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The flaw is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. The...

9.3CVSS7.2AI score0.36897EPSS
Exploits1
Saint
Saint
added 2009/09/11 12:0 a.m.47 views

Microsoft Excel BIFF format Qsir record memory corruption

Added: 09/11/2009 CVE: CVE-2009-1134 BID: 35246 OSVDB: 54958 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user closes a spreadshee...

9.3CVSS7.8AI score0.35698EPSS
Exploits5
Saint
Saint
added 2009/09/11 12:0 a.m.30 views

Microsoft Excel BIFF format Qsir record memory corruption

Added: 09/11/2009 CVE: CVE-2009-1134 BID: 35246 OSVDB: 54958 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user closes a spreadshee...

9.3CVSS7.8AI score0.35698EPSS
Exploits5
Prion
Prion
added 2009/09/01 4:30 p.m.19 views

Buffer overflow

Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer aka File Viewer for Excel, as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention DLP, and other products, allows remote attackers to execute arbitrary code...

9.3CVSS8.3AI score0.05718EPSS
Exploits0References7Affected Software6
Symantec
Symantec
added 2009/08/25 8:0 a.m.36 views

Symantec Products Autonomy KeyView Module Vulnerability

SUMMARY Symantec products that ship a third-party Autonomy KeyView module have updated the module to address a vulnerability in the processing of Excel spreadsheets reported against the KeyView module. AFFECTED PRODUCTS Product | Version | Build | Solutions ---|---|---|--- Symantec Mail Security...

9.3CVSS0.05718EPSS
Exploits0Affected Software1
Saint
Saint
added 2009/08/24 12:0 a.m.44 views

Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerability

Added: 08/24/2009 CVE: CVE-2009-2496 BID: 35991 OSVDB: 56915 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control allows command execution when a user opens a web...

9.3CVSS6.6AI score0.29462EPSS
Exploits4
securityvulns
securityvulns
added 2009/08/12 12:0 a.m.76 views

ZDI-09-054: Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject() Heap Corruption Vulnerability

ZDI-09-054: Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-054 August 11, 2009 -- CVE ID: CVE-2009-1136 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel...

9.3CVSS0.2AI score0.6202EPSS
Exploits11
securityvulns
securityvulns
added 2009/08/12 12:0 a.m.62 views

ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability

ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround Heap Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-056 August 11, 2009 -- CVE ID: CVE-2009-2496 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Excel --...

9.3CVSS0.1AI score0.29462EPSS
Exploits4
Zero Day Initiative
Zero Day Initiative
added 2009/08/11 12:0 a.m.33 views

Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific vulnerability exists in the OWC10.Spreadsheet.10 ActiveX control...

9.3CVSS2.6AI score0.29462EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiative
added 2009/08/11 12:0 a.m.47 views

Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject() Heap Corruption Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists during the processing of malicious parameters to the...

9.3CVSS3.9AI score0.6202EPSS
Exploits11References1
seebug.org
seebug.org
added 2009/07/22 12:0 a.m.18 views

MS Office Web Components Spreadsheet ActiveX (OWC10/11) Exploit

No description provided by source. Author : Ahmed Obied [email protected] - Based on the code posted at http://www.milw0rm.com/exploits/9163 - Tested using: Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc10.dll installed Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc11.dll...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/07/21 12:0 a.m.20 views

MS Office Web Components Spreadsheet ActiveX (OWC10/11) Exploit

Exploit for windows platform in category remote exploits =============================================================== MS Office Web Components Spreadsheet ActiveX OWC10/11 Exploit =============================================================== Author : Ahmed Obied - Tested using: Internet...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/07/16 12:0 a.m.23 views

Microsoft Office Web Components (Spreadsheet) ActiveX BOF PoC

Exploit for unknown platform in category dos / poc ============================================================= Microsoft Office Web Components Spreadsheet ActiveX BOF PoC ============================================================= var shellcode = unescape"evil code"; var array = new Array; va...

7AI score
Exploits0
exploitpack
exploitpack
added 2009/07/16 12:0 a.m.21 views

Microsoft Office Web Components (OWC) Spreadsheet - ActiveX Buffer Overflow (PoC)

Microsoft Office Web Components OWC Spreadsheet - ActiveX Buffer Overflow PoC var shellcode = unescape"evil code"; var array = new Array; var ls = 0x81000-shellcode.length2; var bigblock = unescape"%u0b0c%u0b0C"; whilebigblock.length milw0rm.com 2009-07-16...

1.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/07/16 12:0 a.m.47 views

Microsoft Office Web Components (OWC) Spreadsheet - ActiveX Buffer Overflow (PoC)

var shellcode = unescape"evil code"; var array = new Array; var ls = 0x81000-shellcode.length2; var bigblock = unescape"%u0b0c%u0b0C"; whilebigblock.length milw0rm.com 2009-07-16...

7.4AI score
Exploits0
CVE
CVE
added 2009/07/15 3:0 p.m.123 views

CVE-2009-1136

CVE-2009-1136 affects the Microsoft Office Web Components Spreadsheet ActiveX control (OWC10/OWC11) bundled with Office XP SP3, Office 2003 SP3, and related Web Components/ISA configurations. A crafted call to msDataSourceObject in Internet Explorer allows remote code execution; this vulnerabilit...

9.3CVSS7.2AI score0.6202EPSS
Exploits11References9Affected Software4
CERT
CERT
added 2009/07/15 12:0 a.m.236 views

Microsoft Office Web Components Spreadsheet ActiveX control vulnerability

Overview The Microsoft Office Web Components Spreadsheet ActiveX controls OWC10 and OWC11 contain a vulnerability that may allow an attacker to take control of a vulnerable system. Description The Office Web Components Spreadsheet ActiveX control contains a code execution vulnerability. Public...

9.3CVSS6.5AI score0.6202EPSS
Exploits11References5
Rows per page
Query Builder