CVE-2025-65814

A lack of security checks in the file import process of RHOPHI Analytics LLP Office App-Edit Word v6.4.1 allows attackers to execute a directory traversal...

CVE-2022-30190

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs,...

VulnCheck KEV: CVE-2022-30190

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run code with the privileges of the calling application...

Microsoft Office 2007 - 'mso.dll' Arbitrary Free (MS15-081)

Source: https://code.google.com/p/google-security-research/issues/detail?id=417&can=1 The following crash was observed in Microsoft Office 2007 with Microsoft Office File Validation Add-In disabled and Application Verifier enabled for testing and reproduction. This bug did not reproduce in Office...

Microsoft Word mso.dll LsCreateLine Memory Corruption (CVE-2006-3493)

Microsoft Word is a popular word processing software. A memory corruption vulnerability has been reported in the dynamically-linked library mso.dll which is shipped with Microsoft Word. The vulnerability is due to improper check when processing data in Microsoft Word documents. A remote attacker...