3 matches found
CVE-2011-1892
CVE-2011-1892 targets SharePoint-related products (SharePoint Server/Workspace/ Groove components, Office Web Apps, Windows SharePoint Services, etc.). The flaw is an XXE-style vulnerability where Web Parts containing XML classes referencing external entities allow remote authenticated users to r...
CVE-2008-3068
Microsoft Crypto API 5.131.2600.2180 through 6.0 (used in Outlook, Windows Live Mail, and Office 2007) performs CRL checks by using an arbitrary URL from a certificate embedded in an S/MIME email or a signed document via the Authority Information Access (AIA) extension. This allows remote attacke...
CVE-2010-3146
CVE-2010-3146 corresponds to the Microsoft Groove 2007 insecure library loading vulnerability. Multiple OpenVAS/SecPod/SAINT entries confirm that Groove 2007 (SP2) loads untrusted libraries from the current working directory when opening .vcg or .gta files, specifically mso.dll or GroovePerfmon.d...