Lucene search
+L

212 matches found

Check Point Advisories
Check Point Advisories
added 2009/02/10 12:0 a.m.24 views

Microsoft Exchange Server MS-TNEF Memory Corruption (MS09-003; CVE-2009-0098)

The Microsoft Exchange Server is an implementation of an email server capable of handling numerous Internet protocol, including the Simple Mail Transfer Protocol SMTP. Transport Neutral Encapsulation Format TNEF is a format used by the Microsoft Exchange Server when sending messages formatted as...

9.3CVSS7.2AI score0.24919EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2008/12/17 12:0 a.m.25 views

Microsoft Word RTF Object Parsing Remote Code Execution (MS08-072; CVE-2008-4027)

Microsoft Word is a popular word processing software. A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to a memory calculation error in Microsoft Word that fails to properly handle specially crafted control words in Rich Text Format .rtf files....

9.3CVSS7.2AI score0.33906EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2008/12/09 12:0 a.m.16 views

Microsoft Word RTF Object Parsing Memory Corruption (MS08-072; CVE-2008-4030)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...

9.3CVSS7.2AI score0.2339EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2008/12/09 12:0 a.m.6 views

Microsoft Word RTF Stylesheet Control Word Memory Corruption (MS08-072; CVE-2008-4031)

Microsoft Word is a popular word processing software. A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to an error in Microsoft Word that fails to properly handle malformed Rich Text Format .rtf files. A remote attacker could trigger this flaw ...

9.3CVSS7.2AI score0.2339EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2008/12/09 12:0 a.m.22 views

Microsoft Word RTF Drawing Primitives Remote Code Execution (MS08-072; CVE-2008-4028)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...

9.3CVSS7.2AI score0.38057EPSS
Exploits0
NVD
NVD
added 2008/05/13 10:20 p.m.21 views

CVE-2008-1091

Unspecified vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via a Rich Text Format .rtf file with a malformed string that triggers a "memory calculation error" and a heap-based...

9.3CVSS7.5AI score0.40511EPSS
Exploits1References11
CVE
CVE
added 2008/05/13 10:0 p.m.64 views

CVE-2008-1091

Microsoft Word Object Parsing Vulnerability (CVE-2008-1091) is a remote code execution flaw in parsing malformed Rich Text Format (.rtf) files. The underlying issue is a memory calculation error that can trigger a heap-based buffer overflow when Word processes a malformed string, enabling arbitra...

9.3CVSS7.4AI score0.40511EPSS
Exploits1References11Affected Software3
Check Point Advisories
Check Point Advisories
added 2008/05/13 12:0 a.m.23 views

Microsoft Word RTF File Handling Memory Corruption (MS08-026; CVE-2008-1091)

A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to a memory calculation error in Microsoft Word that fails to properly handle specially crafted Rich Text Format .rtf files. A remote attacker could trigger this flaw by convincing a victim to op...

9.3CVSS6.9AI score0.40511EPSS
Exploits1
CERT
CERT
added 2008/05/13 12:0 a.m.24 views

Microsoft Office fails to properly handle specially crafted Rich Text Format files

Overview A vulnerability in the way Microsoft Office handles Rich Text Format files may lead to execution of arbitrary code. Description Microsoft Office contains a vulnerability that could be exploited when parsing malformed strings contained in specially crafted Rich Text Format .rtf files...

9.3CVSS7.4AI score0.40511EPSS
Exploits1References1
securityvulns
securityvulns
added 2008/02/13 12:0 a.m.64 views

iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Heap Overflow Vulnerability

iDefense Security Advisory 02.12.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 12, 2008 I. BACKGROUND Microsoft Works is a word processor created by Microsoft in the 1980s. Microsoft Office, a widely use productivity suite, is distributed with converters for various versions of th...

9.3CVSS0.6AI score0.38144EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2008/02/03 12:0 a.m.10 views

Microsoft Rich Textbox Control Arbitrary File Overwrite (CVE-2008-0237)

Microsoft Rich Textbox is an ActiveX control that comes with Visual Basic. It allows programs to create formatted text in Rich Text Format. Microsoft Rich Textbox control ActiveX control Richtx32.ocx is used for displaying, entering, and manipulating text with formatting. It can also display font...

6.8CVSS6.2AI score0.20466EPSS
Exploits5
Zero Day Initiative
Zero Day Initiative
added 2007/10/31 12:0 a.m.39 views

Verity KeyView SDK Multiple File Format Parsing Vulnerabilities

Several vulnerabilities exist in the popular Verity KeyView SDK used in many enterprise applications like IBM Lotus Notes. When parsing several different file formats a standard stack overflow occurs allowing a malicious user to gain complete control of the affected machine under the rights of th...

9.3CVSS3AI score0.20906EPSS
Exploits5References1
OSV
OSV
added 2007/08/23 7:17 p.m.2 views

DEBIAN-CVE-2007-4510

ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and other products, allows remote attackers to cause a denial of service application crash via 1 a crafted RTF file, which triggers a NULL dereference in the cliscanrtf function in libclamav/rtf.c; or 2 a crafted HTML document wit...

4.3CVSS6.3AI score0.01968EPSS
Exploits0References1
seebug.org
seebug.org
added 2006/04/17 12:0 a.m.16 views

linux/x86 execve(/bin/sh) + RTF Header 30 bytes

No description provided by source. / linux/x86 - execve"/bin/sh", "/bin/sh", NULL + RTF header - 30 bytes root@magicbox: file linux-sh-rtfhdr.bin linux-sh-rtfhdr.bin: Rich Text Format data, version 1, - izik [email protected] / char shellcode = // // RTF Header 7 bytes // - Be careful not to trigger...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2006/01/11 12:0 a.m.25 views

Update Protection against a Vulnerability in TNEF Decoding in Microsoft Outlook and Microsoft Exchange (MS06-003)

A vulnerability exists in the way Microsoft Exchange server and Microsoft Outlook products handle the decoding of the Transport Neutral Encapsulation TNEF MIME attachment. The TNEF format is used by many Microsoft products such as Exchange and Outlook to transfer messages formatted as Rich Text...

7.5CVSS6.1AI score0.45584EPSS
Exploits0
OSV
OSV
added 2005/10/23 10:2 a.m.6 views

DEBIAN-CVE-2005-2972

Multiple stack-based buffer overflows in the RTF import feature in AbiWord before 2.2.11 allow user-assisted attackers to execute arbitrary code via an RTF file with long identifiers, which are not properly handled in the 1 ParseLevelText, 2 getCharsInsideBrace, 3 HandleLists, 4 or 5 HandleAbiLis...

5.1CVSS8.2AI score0.04101EPSS
Exploits1References1
NVD
NVD
added 2005/08/19 4:0 a.m.20 views

CVE-2005-2501

Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows external user-assisted attackers to execute arbitrary code via a crafted Rich Text Format RTF file...

7.6CVSS9.7AI score0.04211EPSS
Exploits0References5
Cvelist
Cvelist
added 2005/08/19 4:0 a.m.34 views

CVE-2005-2516

Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text Format RTF files, can directly access URLs without performing the normal security checks, which allows remote attackers to execute arbitrary commands...

9.7AI score0.04767EPSS
Exploits0References4
CERT
CERT
added 2005/04/12 12:0 a.m.45 views

Microsoft Internet Explorer URL validation routine contains a buffer overflow

Overview A vulnerability in Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Internet Explorer IE contains an unspecified vulnerability in the way that it handles certain URLs. The process that checks the URL contain...

7.5CVSS7.7AI score0.5791EPSS
Exploits0References1
CERT
CERT
added 2005/04/12 12:0 a.m.42 views

Microsoft Internet Explorer Content Advisor contains a buffer overflow

Overview A buffer overflow in Microsoft Internet Explorer Content Advisor may allow a remote attacker to execute arbitrary code on a vulnerable system. Description The Content Advisor is used to control what content is viewable in Internet Explorer. A buffer overflow exists in the routines that...

7.5CVSS7.6AI score0.58357EPSS
Exploits4References1
Rows per page
Query Builder