15 matches found
CVE-2008-3018
CVE-2008-3021 concerns a memory corruption/vulnerability in Microsoft Office filters when processing malformed PICT images. Affected products include Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, Office Converter Pack, and Works 8. The issue stems from improper handling of PICT image...
CVE-2009-0088
CVE-2009-0088 describes a remote code execution vulnerability in the WordPerfect 6.x Converter (WPFT632.CNV) used by Word 2000 SP3 and the Office Converter Pack. The issue arises when the converter fails to properly validate the length of an input string, enabling a crafted WordPerfect 6.x docume...
CVE-2009-2506
The CVE-2009-2506 issue is a memory corruption/heap overflow vulnerability in WordPad and Office text converters when parsing the DocumentSummaryInformation stream of a specially crafted Word 97 DOC file. A remote attacker could execute arbitrary code with the privileges of the logged-on user by ...
CVE-2010-3947
The CVE-2010-3947 issue is a heap-based buffer overflow in the TIFF Image Converter used by Microsoft Office’s graphics filters, affecting Office XP SP3, Office Converter Pack, and Works 9. A crafted TIFF image can trigger remote code execution via the TIFF import/export filter in Office document...
CVE-2008-3020
CVE-2008-3020 is a remote code execution vulnerability in Microsoft Office filters, specifically in the BMPIMP32.FLT module used by Office BMP import handling. A crafted BMP image with a malformed header (e.g., an excessive number of colors) causes a heap buffer overflow/memory corruption in BMP ...
CVE-2010-3952
CVE-2010-3952 : The FlashPix image converter in the Microsoft Office XP SP3 graphics filters and Office Converter Pack is vulnerable to remote code execution/DoS via a crafted FlashPix image in an Office document, caused by a heap memory corruption in the FPX parsing. Impact is arbitrary code exe...
CVE-2010-3946
CVE-2010-3946 affects Microsoft Office XP SP3, Office 2003 SP3, and Office Converter Pack. The vulnerability arises from an integer overflow in the PICT image converter (PICTIM32.FLT) within the Office graphics filters, causing a heap-based overflow when processing crafted PICT files. Successful ...
CVE-2010-3950
The CVE-2010-3950 issue affects Microsoft Office XP SP3, Office Converter Pack, and Works 9, where the TIFF Image Converter in the graphics filters mishandles TIFF data during endian conversion, causing memory corruption. This leads to remote code execution or a crash via a crafted TIFF image emb...
CVE-2008-3021
CVE-2008-3021 affects Microsoft Office products (Office 2000 SP3, XP SP3, 2003 SP2, Office Converter Pack, Works 8) where the PICT image filter parses the length of PICT files. The root cause is a memory/length handling issue in the PICT filter, leading to remote code execution when a crafted PIC...
CVE-2000-0088
CVE-2000-0088 describes a buffer overflow in the conversion utilities for Word 5 documents (Japanese, Korean and Chinese) that allows a local attacker to execute arbitrary commands. The vulnerability is identified as the "Malformed Conversion Data" issue. The available references indicate a high ...
CVE-2008-3460
Summary of CVE-2008-3460 from provided documents : This vulnerability concerns Microsoft Office’s handling of WordPerfect Graphics (WPG) files. Affected components include WPGIMP32.FLT in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, the Office Converter Pack, and Works 8. The flaw is a heap/buffe...
CVE-2010-3945
CVE-2010-3945 is a buffer overrun in the CGM Image Converter used by Microsoft Office graphics filters (Office XP SP3, Office 2003 SP3, Office Converter Pack). The root cause is improper buffer size allocation when processing CGM images, enabling remote code execution and potential full control o...
CVE-2010-3951
The CVE-2010-3951 entry corresponds to a buffer/stack overflow in the Microsoft Office FlashPix Image Converter (graphics filters) when parsing certain property sets. Affected products are Microsoft Office XP SP3 and the Office Converter Pack. The vulnerability arises from a parsing boundary erro...
CVE-2008-3019
CVE-2008-3019 describes a remote code execution vulnerability in Microsoft Office filters related to malformed Encapsulated PostScript (EPS) handling. A crafted EPS file could allow code execution when opened with affected Office products: Office 2000 SP3, XP SP3, and 2003 SP2, plus the Office Co...
CVE-2010-3949
CVE-2010-3949 affects Microsoft Office XP SP3 and the Office Converter Pack, via a buffer overflow in the TIFF Image Converter (TIFFIM32.FLT) used by the graphics filters. The vulnerability arises when converting TIFF data endianness, allowing a crafted TIFF image in an Office document to trigger...