19 matches found
CVE-2016-3358
CVE-2016-3358 affects Microsoft Office and Excel components across Windows and Mac platforms (Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Office Online Server; Office Viewer; SharePoint Excel Services). The vulnerability is described as a memory corruption in Office applications that a...
CVE-2015-2555
The CVE-2015-2555 entry describes a use-after-free in Microsoft Excel (2010 SP2, 2013 SP1, 2013 RT SP1, 2016, plus Excel for Mac 2011/2016 and Excel Services on SharePoint Server 2010 SP2/2013 SP1) triggered by a crafted calculatedColumnFormula object in an Office document, allowing remote code e...
CVE-2017-8632
CVE-2017-8632 describes a remote code execution vulnerability in Microsoft Office products caused by improper handling of in-memory objects (memory corruption). Affected are Microsoft Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Web Apps 2013, Excel for Mac 2011, Excel 20...
CVE-2016-7266
CVE-2016-7266 affects multiple Microsoft Office/Excel variants (Windows: Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; macOS: Excel 2016) and the Office Compatibility Pack, Excel Viewer, and Excel for Mac. The root cause is mishandling of a registry check when running embedded content, d...
CVE-2015-6038
CVE-2015-6038 affects Microsoft Office products including Excel 2007/2010/2013/2016 (Windows and Mac) and related components, as well as Excel Services on SharePoint Server and Office viewers. The vulnerability stems from memory corruption triggered by specially crafted Office documents, enabling...
CVE-2016-7236
CVE-2016-7236 affects Microsoft Office components, notably Excel 2010 SP2, Excel for Mac 2011, Excel 2016 for Mac, and Excel Services on SharePoint Server 2010 SP2. The root cause is a memory handling flaw that allows remote code execution when a user opens a specially crafted Office document, wi...
CVE-2015-6094
Summary (CVE-2015-6094) A memory corruption vulnerability in Microsoft Office components (notably Excel) that could allow remote code execution when processing a specially crafted Office document. Affected products include Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for M...
CVE-2016-7229
CVE-2016-7229 is a memory corruption vulnerability in Microsoft Office/Excel affecting multiple Office versions (including Excel 2007/2010/2013/2016 and Mac variants) that allows remote code execution via a crafted Office document. The issue stems from improper handling of objects in memory, enab...
CVE-2016-3284
CVE-2016-3284 affects Microsoft Excel components across numerous products (Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Excel for Mac 2011/2016; Office Compatibility Pack SP3; Excel Viewer). Root cause is memory corruption when processing crafted Office documents, enabling remote code e...
CVE-2015-6040
CVE-2015-6040 is a memory corruption vulnerability in Microsoft Office components (Excel 2007/2010, Excel for Mac 2011/2016, Office Compatibility Pack, Excel Viewer) that can be exploited remotely by a crafted Office document to execute arbitrary code. Root cause: improper handling of memory obje...
CVE-2016-0054
CVE-2016-0054 affects multiple Microsoft Office components (notably Excel across Windows and macOS, including Office viewers/SharePoint services). The underlying issue is memory corruption triggered by processing a crafted Office document, enabling remote code execution. Public references describ...
CVE-2016-7264
CVE-2016-7264 affects Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, Excel Viewer, Excel for Mac 2011, and Excel 2016 for Mac. It enables information disclosure via an out-of-bounds memory read in a crafted document; impact is memory contents exposure. No exploitation details are provid...
CVE-2016-0035
CVE-2016-0035 affects Microsoft Office components (notably Excel across Windows and Mac variants, plus Office Compatibility Pack and Excel Viewer) and is described as a memory corruption vulnerability that allows remote code execution when processing specially crafted Office documents. The root c...
CVE-2015-2558
CVE-2015-2558 is a use-after-free memory corruption vulnerability in Microsoft Office components (e.g., Excel 2007 SP3, 2010 SP2, 2013 SP1/RT SP1, 2016; Office for Mac 2011/2016; Excel Services on SharePoint Server 2007 SP3/2010 SP2/2013 SP1) that allows remote code execution via a long fileVersi...
CVE-2016-7228
CVE-2016-7228 affects Microsoft Office family (Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Office for Mac 2011/2016; Office Compatibility Pack SP3). Description: memory corruption in Office components allows remote code execution when a user opens a crafted Office document. Impact per ...
CVE-2015-6123
CVE-2015-6123 is an XSS vulnerability affecting Microsoft Excel 2011 for Mac and Excel 2016 for Mac. The issue arises from a crafted Outlook for Mac email mishandling HTML, enabling remote attackers to inject arbitrary script/HTML. Connected sources reference MS15-116 Office for Mac updates as th...
CVE-2016-0010
CVE-2016-0010 is a Microsoft Office memory corruption vulnerability that can allow remote code execution when a crafted Office document is opened. Affected products include Office 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016, and Mac versions (Office for Mac 2011/2016) plus Word/Excel/PowerPoi...
CVE-2016-7263
CVE-2016-7263 affects Microsoft Office on macOS (Excel for Mac 2011 and Excel 2016 for Mac). The root cause is memory handling issues in Office that can be triggered by a crafted document, leading to memory corruption. Successful exploitation can allow a remote attacker to execute arbitrary code ...
CVE-2016-7213
CVE-2016-7213 is tied to memory corruption in Microsoft Office components used by Excel across Windows and macOS platforms (Excel 2007/2010/2013/2016, Office for Mac 2011/2016, and Office Compatibility Pack). The root cause is improper handling of objects in memory, enabling remote attackers to e...