212 matches found
Microsoft Exchange Server MS-TNEF Memory Corruption (MS09-003; CVE-2009-0098)
The Microsoft Exchange Server is an implementation of an email server capable of handling numerous Internet protocol, including the Simple Mail Transfer Protocol SMTP. Transport Neutral Encapsulation Format TNEF is a format used by the Microsoft Exchange Server when sending messages formatted as...
Microsoft Word RTF Object Parsing Remote Code Execution (MS08-072; CVE-2008-4027)
Microsoft Word is a popular word processing software. A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to a memory calculation error in Microsoft Word that fails to properly handle specially crafted control words in Rich Text Format .rtf files....
Microsoft Word RTF Object Parsing Memory Corruption (MS08-072; CVE-2008-4030)
Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...
Microsoft Word RTF Stylesheet Control Word Memory Corruption (MS08-072; CVE-2008-4031)
Microsoft Word is a popular word processing software. A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to an error in Microsoft Word that fails to properly handle malformed Rich Text Format .rtf files. A remote attacker could trigger this flaw ...
Microsoft Word RTF Drawing Primitives Remote Code Execution (MS08-072; CVE-2008-4028)
Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. A remot...
CVE-2008-1091
Unspecified vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via a Rich Text Format .rtf file with a malformed string that triggers a "memory calculation error" and a heap-based...
CVE-2008-1091
Microsoft Word Object Parsing Vulnerability (CVE-2008-1091) is a remote code execution flaw in parsing malformed Rich Text Format (.rtf) files. The underlying issue is a memory calculation error that can trigger a heap-based buffer overflow when Word processes a malformed string, enabling arbitra...
Microsoft Word RTF File Handling Memory Corruption (MS08-026; CVE-2008-1091)
A remote code execution vulnerability has been identified in Microsoft Word. The vulnerability is due to a memory calculation error in Microsoft Word that fails to properly handle specially crafted Rich Text Format .rtf files. A remote attacker could trigger this flaw by convincing a victim to op...
Microsoft Office fails to properly handle specially crafted Rich Text Format files
Overview A vulnerability in the way Microsoft Office handles Rich Text Format files may lead to execution of arbitrary code. Description Microsoft Office contains a vulnerability that could be exploited when parsing malformed strings contained in specially crafted Rich Text Format .rtf files...
iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Heap Overflow Vulnerability
iDefense Security Advisory 02.12.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 12, 2008 I. BACKGROUND Microsoft Works is a word processor created by Microsoft in the 1980s. Microsoft Office, a widely use productivity suite, is distributed with converters for various versions of th...
Microsoft Rich Textbox Control Arbitrary File Overwrite (CVE-2008-0237)
Microsoft Rich Textbox is an ActiveX control that comes with Visual Basic. It allows programs to create formatted text in Rich Text Format. Microsoft Rich Textbox control ActiveX control Richtx32.ocx is used for displaying, entering, and manipulating text with formatting. It can also display font...
Verity KeyView SDK Multiple File Format Parsing Vulnerabilities
Several vulnerabilities exist in the popular Verity KeyView SDK used in many enterprise applications like IBM Lotus Notes. When parsing several different file formats a standard stack overflow occurs allowing a malicious user to gain complete control of the affected machine under the rights of th...
DEBIAN-CVE-2007-4510
ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and other products, allows remote attackers to cause a denial of service application crash via 1 a crafted RTF file, which triggers a NULL dereference in the cliscanrtf function in libclamav/rtf.c; or 2 a crafted HTML document wit...
linux/x86 execve(/bin/sh) + RTF Header 30 bytes
No description provided by source. / linux/x86 - execve"/bin/sh", "/bin/sh", NULL + RTF header - 30 bytes root@magicbox: file linux-sh-rtfhdr.bin linux-sh-rtfhdr.bin: Rich Text Format data, version 1, - izik [email protected] / char shellcode = // // RTF Header 7 bytes // - Be careful not to trigger...
Update Protection against a Vulnerability in TNEF Decoding in Microsoft Outlook and Microsoft Exchange (MS06-003)
A vulnerability exists in the way Microsoft Exchange server and Microsoft Outlook products handle the decoding of the Transport Neutral Encapsulation TNEF MIME attachment. The TNEF format is used by many Microsoft products such as Exchange and Outlook to transfer messages formatted as Rich Text...
DEBIAN-CVE-2005-2972
Multiple stack-based buffer overflows in the RTF import feature in AbiWord before 2.2.11 allow user-assisted attackers to execute arbitrary code via an RTF file with long identifiers, which are not properly handled in the 1 ParseLevelText, 2 getCharsInsideBrace, 3 HandleLists, 4 or 5 HandleAbiLis...
CVE-2005-2501
Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows external user-assisted attackers to execute arbitrary code via a crafted Rich Text Format RTF file...
CVE-2005-2516
Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text Format RTF files, can directly access URLs without performing the normal security checks, which allows remote attackers to execute arbitrary commands...
Microsoft Internet Explorer URL validation routine contains a buffer overflow
Overview A vulnerability in Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Internet Explorer IE contains an unspecified vulnerability in the way that it handles certain URLs. The process that checks the URL contain...
Microsoft Internet Explorer Content Advisor contains a buffer overflow
Overview A buffer overflow in Microsoft Internet Explorer Content Advisor may allow a remote attacker to execute arbitrary code on a vulnerable system. Description The Content Advisor is used to control what content is viewable in Internet Explorer. A buffer overflow exists in the routines that...