Lucene search
+L

212 matches found

Positive Technologies
Positive Technologies
added 2015/04/14 12:0 a.m.4 views

PT-2015-1062 · Microsoft · Sharepoint Server +4

Name of the Vulnerable Software and Affected Versions: Microsoft Office versions 2007 SP3 through 2013 SP1 Microsoft Word versions 2007 SP3 through 2013 SP1 Microsoft Word for Mac version 2011 Office Compatibility Pack version SP3 Word Automation Services on SharePoint Server versions 2010 SP2 an...

9.3CVSS9.7AI score0.9679EPSS
Exploits1References16
VulnCheck KEV
VulnCheck KEV
added 2015/04/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2015-1641

Microsoft Office contains a memory corruption vulnerability due to failure to properly handle rich text format files in memory. Successful exploitation allows for remote code execution in the context of the current user...

9.3CVSS7.8AI score0.9679EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2015/03/26 12:0 a.m.24 views

Microsoft Word RTF Object Parsing Memory Corruption (MS08-072) - Ver2 (CVE-2008-4030)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...

9.3CVSS7.2AI score0.2339EPSS
Exploits0
CNVD
CNVD
added 2015/03/12 12:0 a.m.24 views

Microsoft Office Memory Corruption Vulnerability (CNVD-2015-01612)

Microsoft Office is a suite of word processing programs developed by Microsoft. A memory corruption vulnerability exists in Microsoft Office's handling of specially crafted RTF files viewed via preview, which allows an attacker to construct special files and trick the user into parsing them, whic...

9.3CVSS7.4AI score0.13452EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/03/11 12:0 a.m.153 views

MS15-022: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3038999)

The remote Windows host has a version of Microsoft Office, Office Compatibility Pack, Microsoft Word Viewer, Microsoft Excel Viewer, SharePoint Server, or Microsoft Office Web Apps that is affected by multiple vulnerabilities : - Multiple remote code execution vulnerabilities exist due to...

9.3CVSS6.4AI score0.40942EPSS
Exploits3References6
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.39 views

Microsoft Office Excel Viewer Remote Code Execution Vulnerabilities (3038999)

This host is missing a critical security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.40942EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.87 views

Microsoft Office Excel Remote Code Execution Vulnerabilities (3038999)

This host is missing a critical security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.40942EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.36 views

Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (3038999)

This host is missing a critical security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.40942EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.43 views

Microsoft Office Web Apps Multiple Vulnerabilities (3038999)

This host is missing an important security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

9.3CVSS4.9AI score0.17279EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.65 views

Microsoft Office Suite Remote Code Execution Vulnerabilities (3038999)

This host is missing a critical security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.40942EPSS
Exploits3References8
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.54 views

Microsoft Office Word Viewer Remote Code Execution Vulnerabilities (3038999)

This host is missing a critical security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.40942EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.27 views

Microsoft SharePoint Server WAS Multiple Vulnerabilities (3038999)

This host is missing an important security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

9.3CVSS4.9AI score0.17279EPSS
Exploits0References3
Check Point Advisories
Check Point Advisories
added 2015/03/10 12:0 a.m.20 views

Microsoft Office Memory Corruption (MS15-022; CVE-2015-0086)

A remote code execution vulnerability has been reported in Microsoft Office. The vulnerability is caused when Microsoft Office does not properly handle rich text format files in memory. A remote attacker can exploit this issue by enticing a user to open a specially crafted file with an affected...

9.3CVSS7AI score0.13452EPSS
Exploits0
Symantec
Symantec
added 2015/03/10 12:0 a.m.28 views

Microsoft Office CVE-2015-0086 Memory Corruption Vulnerability

Description Microsoft Office is prone to a memory-corruption vulnerability because it fails to properly handle rich text format files in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result...

9.3CVSS0.4AI score0.13452EPSS
Exploits0Affected Software7
OSV
OSV
added 2014/12/09 11:59 p.m.2 views

DEBIAN-CVE-2014-9275

UnRTF allows remote attackers to cause a denial of service out-of-bounds memory access and crash and possibly execute arbitrary code via a crafted RTF file...

7.5CVSS7.8AI score0.04736EPSS
Exploits0References1
OSV
OSV
added 2014/11/26 12:0 a.m.3 views

UBUNTU-CVE-2014-9093

LibreOffice before 4.3.5 allows remote attackers to cause a denial of service invalid write operation and crash and possibly execute arbitrary code via a crafted RTF file...

7.5CVSS7.1AI score0.04143EPSS
Exploits0References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Microsoft Windows XP/95/98/2000/NT 4 Riched20.dll Attribute Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6874/info The riched20.dll is vulnerable to a buffer overflow that results in the application calling the library to fail. By creating a Rich Text Format RTF file with more than 65536 bytes of data in an attribute, the...

7.1AI score
Exploits0
OSV
OSV
added 2014/05/05 5:6 p.m.2 views

DEBIAN-CVE-2010-5109

Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service crash via a crafted TNEF file, which triggers a buffer overflow...

4.3CVSS7AI score0.02387EPSS
Exploits0References1
MSRC
MSRC
added 2014/04/03 7:0 a.m.10 views

Advance Notification Service for the April 2014 Security Bulletin Release

Today we provide advance notification for the release of four bulletins, two rated Critical and two rated Important in severity. These updates address issues in Microsoft Windows, Office and Internet Explorer. The update provided through MS14-017 fully addresses the Microsoft Word issue first...

6.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/03/31 12:0 a.m.25 views

Microsoft Word RTF Drawing Primitives Remote Code Execution (MS08-072) - Ver2 (CVE-2008-4028)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...

9.3CVSS7.2AI score0.38057EPSS
Exploits0
Rows per page
Query Builder