Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

ThreatPost
ThreatPostadded 2019/11/12 9:35 p.m.91 views

Microsoft Patches RCE Bug Actively Under Attack

A critical bug in a Microsoft scripting engine, under active attack, has been patched as part of Microsoft’s Patch Tuesday security roundup. The vulnerability exists in Internet Explorer and allows an attacker to execute rogue code if a victim is coaxed into visiting a malicious web page, or, if...

7.6CVSS9.1AI score0.83036EPSS
Exploits3References14
ThreatPost
ThreatPostadded 2019/11/01 9:59 p.m.186 views

Office for Mac Users Warned of Malicious SYLK Files

Microsoft Office for Mac users are being warned that malicious SYLK files are sneaking past endpoint defenses even when the “disable all macros without notification” is turned on. This leaves systems vulnerable to a remote, unauthenticated attackers who can execute arbitrary code. The warning com...

0.6AI score
Exploits0References9
CERT
CERTadded 2019/11/01 12:0 a.m.52 views

Microsoft Office for Mac cannot properly disable XLM macros

Overview The Microsoft Office for Mac option "Disable all macros without notification" enables XLM macros without prompting, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description XLM macros Up to and including Microsoft Excel 4.0, a macro...

7.8CVSS7.8AI score0.05058EPSS
Exploits0References6
Check Point Advisories
Check Point Advisoriesadded 2010/06/14 12:0 a.m.2 views

Microsoft Excel File Importing Code Execution (MS08-014; CVE-2008-0112)

Symbolic Link SYLK is a Microsoft file format typically used for the interchange of spreadsheet data between applications such as Microsoft Multiplan and Microsoft Excel. SYLK files conventionally have a .slk extension. From within a spreadsheet, data can be exported in the SYLK format. SYLK file...

9.3CVSS7.3AI score0.71916EPSS
Exploits1
Check Point Advisories
Check Point Advisoriesadded 2008/03/11 12:0 a.m.2 views

SYLK Files (CVE-2008-0112)

Symbolic Link SYLK is a Microsoft file format typically used for exchanging data between applications, particularly spreadsheets. SYLK files conventionally have a .slk suffix. The vulnerability is due to an error in Microsoft Excel that fails to sufficiently validate file data when importing a fi...

9.3CVSS7AI score0.71916EPSS
Exploits1
CVE
CVEadded 2000/01/04 5:0 a.m.54 views

CVE-1999-0794

Issue summary : Microsoft Excel does not warn users when a macro is present inside a Symbolic Link (SYLK) format file. What is affected : Excel’s handling of SYLK files containing macros (no warning prompt to the user). Root cause / nature of vulnerability : Absence of user warning in the SYLK ma...

4.6CVSS6.8AI score0.00304EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder