989 matches found
Microsoft Office Web Components Spreadsheet ActiveX control vulnerability
Overview The Microsoft Office Web Components Spreadsheet ActiveX controls OWC10 and OWC11 contain a vulnerability that may allow an attacker to take control of a vulnerable system. Description The Office Web Components Spreadsheet ActiveX control contains a code execution vulnerability. Public...
Microsoft Office Web Components OWC.Spreadsheet Evaluate method vulnerability
Added: 07/14/2009 CVE: CVE-2009-1136 BID: 35642 OSVDB: 55806 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A memory corruption vulnerability allows command execution when a web page passes a specially crafted parameter to the...
Microsoft Office Spreadsheet ActiveX控件内存破坏漏洞
BUGTRAQ ID: 35642 CVECAN ID: CVE-2009-1136 Microsoft Office是非常流行的办公软件套件。 Office Web组件是用于向Web发布电子表格、图表和数据库的COM控件,其中的Spreadsheet ActiveX控件(OWC 10和OWC11)存在内存破坏漏洞。如果用户受骗访问了恶意恶意网页并向该控件,就会导致执行任意指令。 目前这个漏洞正在被挂马攻击广为利用。 Microsoft ISA Server 2006 SP1 Microsoft ISA Server 2006 Microsoft ISA Server 2004 SP3...
New Flaw in Microsoft Office Web Components Under Attack
From SearchSecurity Robert Westervelt Microsoft issued an advisory Monday, warning of a new vulnerability in Office Web Components being actively targeted by attackers. The Office Web Components allow users to view spreadsheets, charts and databases on the Web. Microsoft said the vulnerability is...
Microsoft Office Web Components ActiveX Control 'msDataSourceObject()' Code Execution Vulnerability
Description Microsoft Office Web Components is prone to a remote code-execution vulnerability that affects the OWC10.Spreadsheet ActiveX control. The control is identified by the following CLSIDs: 0002E541-0000-0000-C000-000000000046 0002E559-0000-0000-C000-000000000046 An attacker could exploit...
Microsoft Excel FormulaValue Field Memory Corruption (MS09-021; CVE-2009-0560)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The flaw is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. The...
Microsoft Excel ExternSheet Record Indexing Memory Corruption (MS09-021; CVE-2009-0558)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error when Microsoft Excel reads a value from a specially crafted Excel file and then uses it as an index into an...
Microsoft Excel BRAI Record Pointer Corruption (MS09-021; CVE-2009-0549)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. The...
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Buffer Overflow Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 05.14.09 http://labs.idefense.com/intelligence/vulnerabilities/ May 14, 2009 I. BACKGROUND Oracle Corp.'s Outside In Technology is a document conversion engine supporting a large number of binary file formats. Prior to...
Microsoft Excel SST record code execution
Added: 04/23/2009 CVE: CVE-2009-0238 BID: 33870 OSVDB: 52695 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A vulnerability in Microsoft Excel allows command execution when a user opens a spreadshee...
Microsoft Excel SST record code execution
Added: 04/23/2009 CVE: CVE-2009-0238 BID: 33870 OSVDB: 52695 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A vulnerability in Microsoft Excel allows command execution when a user opens a spreadshee...
Microsoft Excel multiple memory corruptions
Memory corruption on spreadsheet files parsing...
Memory corruption
Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel in Microsoft Office 2004 and 2008 for Mac; Microsoft Office Excel Viewer and Excel Viewer 2003 SP3; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 do not properly parse the Exce...
CVE-2009-0100
CVE-2009-0100 affects multiple Microsoft Office Excel variants (Windows and Mac) and is caused by a memory corruption error when parsing Excel records (TXO/OBJ) in the spreadsheet file format. A crafted spreadsheet containing a malformed object with an offset and a two‑byte value can trigger the ...
Ubuntu: Security Advisory (USN-604-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for openoffice.org FEDORA-2007-375
Check for the Version of openoffice.org OpenVAS Vulnerability Test Fedora Update for openoffice.org FEDORA-2007-375 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Fedora Update for openoffice.org FEDORA-2007-376
Check for the Version of openoffice.org OpenVAS Vulnerability Test Fedora Update for openoffice.org FEDORA-2007-376 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Fedora Update for openoffice.org FEDORA-2007-005 FC(6)
Check for the Version of openoffice.org OpenVAS Vulnerability Test Fedora Update for openoffice.org FEDORA-2007-005 FC6 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
Fedora Update for gnumeric FEDORA-2008-1403
Check for the Version of gnumeric OpenVAS Vulnerability Test Fedora Update for gnumeric FEDORA-2008-1403 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for gnumeric FEDORA-2008-1313
Check for the Version of gnumeric OpenVAS Vulnerability Test Fedora Update for gnumeric FEDORA-2008-1313 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...