25 matches found
CVE-2016-3358
CVE-2016-3358 affects Microsoft Office and Excel components across Windows and Mac platforms (Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Office Online Server; Office Viewer; SharePoint Excel Services). The vulnerability is described as a memory corruption in Office applications that a...
CVE-2015-2555
The CVE-2015-2555 entry describes a use-after-free in Microsoft Excel (2010 SP2, 2013 SP1, 2013 RT SP1, 2016, plus Excel for Mac 2011/2016 and Excel Services on SharePoint Server 2010 SP2/2013 SP1) triggered by a crafted calculatedColumnFormula object in an Office document, allowing remote code e...
CVE-2017-8632
CVE-2017-8632 describes a remote code execution vulnerability in Microsoft Office products caused by improper handling of in-memory objects (memory corruption). Affected are Microsoft Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Web Apps 2013, Excel for Mac 2011, Excel 20...
CVE-2015-6038
CVE-2015-6038 affects Microsoft Office products including Excel 2007/2010/2013/2016 (Windows and Mac) and related components, as well as Excel Services on SharePoint Server and Office viewers. The vulnerability stems from memory corruption triggered by specially crafted Office documents, enabling...
CVE-2016-7266
CVE-2016-7266 affects multiple Microsoft Office/Excel variants (Windows: Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; macOS: Excel 2016) and the Office Compatibility Pack, Excel Viewer, and Excel for Mac. The root cause is mishandling of a registry check when running embedded content, d...
CVE-2016-7233
CVE-2016-7233 is an information-disclosure/out-of-bounds-read vulnerability in multiple Microsoft Office components (e.g., Word 2007, Office 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Viewer, Office Web Apps 2010 SP2, SharePoint 2013 components, and Office Automation Services). A craft...
CVE-2016-7236
CVE-2016-7236 affects Microsoft Office components, notably Excel 2010 SP2, Excel for Mac 2011, Excel 2016 for Mac, and Excel Services on SharePoint Server 2010 SP2. The root cause is a memory handling flaw that allows remote code execution when a user opens a specially crafted Office document, wi...
CVE-2016-7234
CVE-2016-7234 is a memory-corruption vulnerability in Microsoft Office products (e.g., Word 2007, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word for Mac 2011, Excel for Mac 2011, Word 2016 for Mac, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and related components) that allows...
CVE-2015-6094
Summary (CVE-2015-6094) A memory corruption vulnerability in Microsoft Office components (notably Excel) that could allow remote code execution when processing a specially crafted Office document. Affected products include Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for M...
CVE-2015-6122
CVE-2015-6122 is part of the MS15-131 memory corruption family affecting multiple Microsoft Office products. The connected Nessus plugin (MS15-131) links CVE-2015-6122 to remote code execution via crafted Office documents, with Mac OS X Office versions (MACOSX_MS15-131_OFFICE.NASL) and Office for...
CVE-2016-7229
CVE-2016-7229 is a memory corruption vulnerability in Microsoft Office/Excel affecting multiple Office versions (including Excel 2007/2010/2013/2016 and Mac variants) that allows remote code execution via a crafted Office document. The issue stems from improper handling of objects in memory, enab...
CVE-2016-3284
CVE-2016-3284 affects Microsoft Excel components across numerous products (Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Excel for Mac 2011/2016; Office Compatibility Pack SP3; Excel Viewer). Root cause is memory corruption when processing crafted Office documents, enabling remote code e...
CVE-2015-6040
CVE-2015-6040 is a memory corruption vulnerability in Microsoft Office components (Excel 2007/2010, Excel for Mac 2011/2016, Office Compatibility Pack, Excel Viewer) that can be exploited remotely by a crafted Office document to execute arbitrary code. Root cause: improper handling of memory obje...
CVE-2016-0054
CVE-2016-0054 affects multiple Microsoft Office components (notably Excel across Windows and macOS, including Office viewers/SharePoint services). The underlying issue is memory corruption triggered by processing a crafted Office document, enabling remote code execution. Public references describ...
CVE-2016-7235
CVE-2016-7235 is a memory-corruption vulnerability in Microsoft Office components that allows remote code execution via a crafted Office document. Affected products include Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, and Office Compatibility Pack SP3. The Roo...
CVE-2015-2558
CVE-2015-2558 is a use-after-free memory corruption vulnerability in Microsoft Office components (e.g., Excel 2007 SP3, 2010 SP2, 2013 SP1/RT SP1, 2016; Office for Mac 2011/2016; Excel Services on SharePoint Server 2007 SP3/2010 SP2/2013 SP1) that allows remote code execution via a long fileVersi...
CVE-2016-7264
CVE-2016-7264 affects Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, Excel Viewer, Excel for Mac 2011, and Excel 2016 for Mac. It enables information disclosure via an out-of-bounds memory read in a crafted document; impact is memory contents exposure. No exploitation details are provid...
CVE-2016-0035
CVE-2016-0035 affects Microsoft Office components (notably Excel across Windows and Mac variants, plus Office Compatibility Pack and Excel Viewer) and is described as a memory corruption vulnerability that allows remote code execution when processing specially crafted Office documents. The root c...
CVE-2017-8567
CVE-2017-8567 affects Microsoft Office for Mac 2011 (notably Excel) with a remote code execution flaw caused by improper handling of objects in memory. A crafted file can trigger arbitrary code execution in the context of the current user; exploitation requires the user to open the malicious Offi...
CVE-2016-7228
CVE-2016-7228 affects Microsoft Office family (Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Office for Mac 2011/2016; Office Compatibility Pack SP3). Description: memory corruption in Office components allows remote code execution when a user opens a crafted Office document. Impact per ...
CVE-2016-7231
CVE-2016-7231 affects Microsoft Office components: Excel 2007 SP3, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer. Root cause is memory corruption from improper handling of objects in memory, enabling remote code execution when processing a crafted Office document. Affected p...
CVE-2015-6123
CVE-2015-6123 is an XSS vulnerability affecting Microsoft Excel 2011 for Mac and Excel 2016 for Mac. The issue arises from a crafted Outlook for Mac email mishandling HTML, enabling remote attackers to inject arbitrary script/HTML. Connected sources reference MS15-116 Office for Mac updates as th...
CVE-2016-0010
CVE-2016-0010 is a Microsoft Office memory corruption vulnerability that can allow remote code execution when a crafted Office document is opened. Affected products include Office 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016, and Mac versions (Office for Mac 2011/2016) plus Word/Excel/PowerPoi...
CVE-2016-7263
CVE-2016-7263 affects Microsoft Office on macOS (Excel for Mac 2011 and Excel 2016 for Mac). The root cause is memory handling issues in Office that can be triggered by a crafted document, leading to memory corruption. Successful exploitation can allow a remote attacker to execute arbitrary code ...
CVE-2016-7213
CVE-2016-7213 is tied to memory corruption in Microsoft Office components used by Excel across Windows and macOS platforms (Excel 2007/2010/2013/2016, Office for Mac 2011/2016, and Office Compatibility Pack). The root cause is improper handling of objects in memory, enabling remote attackers to e...