Lucene search
K

989 matches found

CERT
CERT
added 2009/07/15 12:0 a.m.235 views

Microsoft Office Web Components Spreadsheet ActiveX control vulnerability

Overview The Microsoft Office Web Components Spreadsheet ActiveX controls OWC10 and OWC11 contain a vulnerability that may allow an attacker to take control of a vulnerable system. Description The Office Web Components Spreadsheet ActiveX control contains a code execution vulnerability. Public...

9.3CVSS6.5AI score0.6202EPSS
Exploits11References5
Saint
Saint
added 2009/07/14 12:0 a.m.36 views

Microsoft Office Web Components OWC.Spreadsheet Evaluate method vulnerability

Added: 07/14/2009 CVE: CVE-2009-1136 BID: 35642 OSVDB: 55806 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A memory corruption vulnerability allows command execution when a web page passes a specially crafted parameter to the...

9.3CVSS6.4AI score0.6202EPSS
Exploits11
seebug.org
seebug.org
added 2009/07/14 12:0 a.m.38 views

Microsoft Office Spreadsheet ActiveX控件内存破坏漏洞

BUGTRAQ ID: 35642 CVECAN ID: CVE-2009-1136 Microsoft Office是非常流行的办公软件套件。 Office Web组件是用于向Web发布电子表格、图表和数据库的COM控件,其中的Spreadsheet ActiveX控件(OWC 10和OWC11)存在内存破坏漏洞。如果用户受骗访问了恶意恶意网页并向该控件,就会导致执行任意指令。 目前这个漏洞正在被挂马攻击广为利用。 Microsoft ISA Server 2006 SP1 Microsoft ISA Server 2006 Microsoft ISA Server 2004 SP3...

9.3CVSS6.4AI score0.6202EPSS
Exploits11
ThreatPost
ThreatPost
added 2009/07/13 6:53 p.m.120 views

New Flaw in Microsoft Office Web Components Under Attack

From SearchSecurity Robert Westervelt Microsoft issued an advisory Monday, warning of a new vulnerability in Office Web Components being actively targeted by attackers. The Office Web Components allow users to view spreadsheets, charts and databases on the Web. Microsoft said the vulnerability is...

9.3CVSS3.1AI score0.99945EPSS
Exploits33References4
Symantec
Symantec
added 2009/07/13 12:0 a.m.28 views

Microsoft Office Web Components ActiveX Control 'msDataSourceObject()' Code Execution Vulnerability

Description Microsoft Office Web Components is prone to a remote code-execution vulnerability that affects the OWC10.Spreadsheet ActiveX control. The control is identified by the following CLSIDs: 0002E541-0000-0000-C000-000000000046 0002E559-0000-0000-C000-000000000046 An attacker could exploit...

Exploits0References4Affected Software3
Check Point Advisories
Check Point Advisories
added 2009/06/09 12:0 a.m.7 views

Microsoft Excel FormulaValue Field Memory Corruption (MS09-021; CVE-2009-0560)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The flaw is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. The...

9.3CVSS7.2AI score0.27984EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/06/09 12:0 a.m.3 views

Microsoft Excel ExternSheet Record Indexing Memory Corruption (MS09-021; CVE-2009-0558)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error when Microsoft Excel reads a value from a specially crafted Excel file and then uses it as an index into an...

9.3CVSS7.2AI score0.3107EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/06/09 12:0 a.m.5 views

Microsoft Excel BRAI Record Pointer Corruption (MS09-021; CVE-2009-0549)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. The...

9.3CVSS7.2AI score0.28446EPSS
Exploits1
securityvulns
securityvulns
added 2009/05/18 12:0 a.m.91 views

iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 05.14.09 http://labs.idefense.com/intelligence/vulnerabilities/ May 14, 2009 I. BACKGROUND Oracle Corp.'s Outside In Technology is a document conversion engine supporting a large number of binary file formats. Prior to...

4.4CVSS0.3AI score0.00419EPSS
Exploits2
Saint
Saint
added 2009/04/23 12:0 a.m.39 views

Microsoft Excel SST record code execution

Added: 04/23/2009 CVE: CVE-2009-0238 BID: 33870 OSVDB: 52695 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A vulnerability in Microsoft Excel allows command execution when a user opens a spreadshee...

9.3CVSS6.3AI score0.43063EPSS
Exploits4
Saint
Saint
added 2009/04/23 12:0 a.m.45 views

Microsoft Excel SST record code execution

Added: 04/23/2009 CVE: CVE-2009-0238 BID: 33870 OSVDB: 52695 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A vulnerability in Microsoft Excel allows command execution when a user opens a spreadshee...

9.3CVSS6.3AI score0.43063EPSS
Exploits4
securityvulns
securityvulns
added 2009/04/16 12:0 a.m.45 views

Microsoft Excel multiple memory corruptions

Memory corruption on spreadsheet files parsing...

9.3CVSS3.2AI score0.43063EPSS
Exploits5References2Affected Software1
Prion
Prion
added 2009/04/15 8:0 a.m.29 views

Memory corruption

Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel in Microsoft Office 2004 and 2008 for Mac; Microsoft Office Excel Viewer and Excel Viewer 2003 SP3; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 do not properly parse the Exce...

9.3CVSS7.9AI score0.29043EPSS
Exploits1References8Affected Software3
CVE
CVE
added 2009/04/15 3:49 a.m.81 views

CVE-2009-0100

CVE-2009-0100 affects multiple Microsoft Office Excel variants (Windows and Mac) and is caused by a memory corruption error when parsing Excel records (TXO/OBJ) in the spreadsheet file format. A crafted spreadsheet containing a malformed object with an offset and a two‑byte value can trigger the ...

9.3CVSS7.4AI score0.29043EPSS
Exploits1References8Affected Software4
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.11 views

Ubuntu: Security Advisory (USN-604-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.7AI score0.04981EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.31 views

Fedora Update for openoffice.org FEDORA-2007-375

Check for the Version of openoffice.org OpenVAS Vulnerability Test Fedora Update for openoffice.org FEDORA-2007-375 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

9.3CVSS9.6AI score0.05748EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.24 views

Fedora Update for openoffice.org FEDORA-2007-376

Check for the Version of openoffice.org OpenVAS Vulnerability Test Fedora Update for openoffice.org FEDORA-2007-376 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

9.3CVSS9.5AI score0.05748EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.33 views

Fedora Update for openoffice.org FEDORA-2007-005 FC(6)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Fedora Update for openoffice.org FEDORA-2007-005 FC6 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...

7.6CVSS9.5AI score0.04274EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.18 views

Fedora Update for gnumeric FEDORA-2008-1403

Check for the Version of gnumeric OpenVAS Vulnerability Test Fedora Update for gnumeric FEDORA-2008-1403 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

9.3CVSS0.04981EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.16 views

Fedora Update for gnumeric FEDORA-2008-1313

Check for the Version of gnumeric OpenVAS Vulnerability Test Fedora Update for gnumeric FEDORA-2008-1313 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

9.3CVSS0.04981EPSS
Exploits0References2
Rows per page
Query Builder