11 matches found
CVE-2006-3877
PowerPoint Malformed Record Memory Corruption Vulnerability (CVE-2006-3877) affects multiple Office suites. A remote code execution flaw exists when PowerPoint opens a specially crafted file with malformed records, allowing an attacker to gain full control of the affected system if the user runs ...
CVE-2007-0671
CVE-2007-0671 is a remote-code-execution vulnerability in Microsoft Office Excel (affecting Excel 2000/XP/2003 and Mac equivalents) where a specially crafted Excel file can trigger arbitrary code execution. The vulnerability arises from improper handling/parsing of office records, enabling remote...
CVE-2009-0556
CVE-2009-0556 affects Microsoft Office PowerPoint (Windows and Mac) versions listed in the description. It is a memory corruption vulnerability triggered by a PowerPoint file containing an OutlineTextRefAtom with an invalid index, enabling remote code execution when a user opens the malicious fil...
CVE-2006-3590
Microsoft PowerPoint Mso.dll Vulnerability (CVE-2006-3590) affects PowerPoint 2000–2003 where parsing a malformed shape container in a PPT file can lead to remote code execution. The underlying issue is memory corruption when PowerPoint processes a specially crafted file, potentially via email at...
CVE-2006-0022
CVE-2006-0022 describes a remote code execution vulnerability in Microsoft PowerPoint across multiple Office versions (2000 SP3, XP SP3, 2003 SP1/SP2, 2004 for Mac, and PowerPoint v. X for Mac) triggered by opening a PowerPoint document containing a malformed record. The root cause is memory corr...
CVE-2006-3449
CVE-2006-3449 describes a remote code execution in Microsoft PowerPoint 2000–2003 caused by parsing a malformed BIFF record in a PPT file. The vulnerability can be triggered when a user opens a crafted PPT document, potentially allowing attacker-controlled code execution in the user’s context (us...
CVE-2000-0088
CVE-2000-0088 describes a buffer overflow in the conversion utilities for Word 5 documents (Japanese, Korean and Chinese) that allows a local attacker to execute arbitrary commands. The vulnerability is identified as the "Malformed Conversion Data" issue. The available references indicate a high ...
CVE-2000-0765
CVE-2000-0765 describes a buffer overflow in the HTML interpreter of Microsoft Office 2000 . An attacker could trigger the overflow via a long embedded object tag in HTML, allowing execution of arbitrary commands. The sources provide the vulnerability description but do not specify affected versi...
CVE-2000-0419
The Office 2000 UA ActiveX control is described as wrongly marked “safe for scripting.” This vulnerability allows an intruder to script interactions through the control’s Show Me feature, potentially disabling macro warnings and enabling arbitrary actions within Office applications (e.g., launchi...
CVE-2000-0597
The CVE-2000-0597 entry concerns Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97. The vulnerability arises because these products are marked as safe for scripting, enabling a remote attacker to coax Internet Explorer or some email clients to save files to arbitrary locations via th...
CVE-2001-0005
Microsoft PowerPoint 2000 is affected by a buffer overflow in the file loader’s parsing mechanism, allowing arbitrary code execution when a user opens a malicious PowerPoint file or views a malicious web page. The root cause is a parsing overflow in the loader that can be triggered by crafted inp...