6 matches found
CVE-2006-3877
PowerPoint Malformed Record Memory Corruption Vulnerability (CVE-2006-3877) affects multiple Office suites. A remote code execution flaw exists when PowerPoint opens a specially crafted file with malformed records, allowing an attacker to gain full control of the affected system if the user runs ...
CVE-2007-0671
CVE-2007-0671 is a remote-code-execution vulnerability in Microsoft Office Excel (affecting Excel 2000/XP/2003 and Mac equivalents) where a specially crafted Excel file can trigger arbitrary code execution. The vulnerability arises from improper handling/parsing of office records, enabling remote...
CVE-2000-0419
The Office 2000 UA ActiveX control is described as wrongly marked “safe for scripting.” This vulnerability allows an intruder to script interactions through the control’s Show Me feature, potentially disabling macro warnings and enabling arbitrary actions within Office applications (e.g., launchi...
CVE-2000-0788
The CVE-2000-0788 family concerns the Mail Merge Tool in Microsoft Word. Connected records describe Word 2000/Word 2002 behavior: when Access is present, the Mail Merge tool can execute Visual Basic (VBA) scripts embedded in a mail-merge document saved as HTML, enabling remote command execution. ...
CVE-2008-1200
Technical details for CVE-2008-1200 are not publicly provided in the supplied connected documents. The records describe an unspecified Microsoft Access vulnerability with crafted MDB files but do not reveal affected versions, root cause, impact, or remediation.
CVE-2003-0665
CVE-2003-0665 is a buffer overflow in the ActiveX control used by Microsoft Access Snapshot Viewer for Access 97, 2000, and 2002. The vulnerability allows remote attackers to execute arbitrary code by sending long parameters to the control. Evidence from multiple sources confirms the root cause a...