24 matches found
CVE-2016-0025
CVE-2016-0025 is a memory corruption vulnerability in Microsoft Office products that allows remote code execution via a crafted Office document. Affected software includes Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office 2016, Word 2016, Word for Mac 2011, Wo...
CVE-2017-8509
CVE-2017-8509 is an Office remote code execution vulnerability that arises when Office components mishandle objects in memory, allowing an attacker to take control of an affected system if a user opens a crafted Office file. Public details in connected documents indicate the vulnerability affects...
CVE-2016-3313
CVE-2016-3313 is a memory corruption vulnerability in Microsoft Office products that allows remote code execution when a user opens a crafted Office file. The CVE description lists affected software as Office 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016, plus Word 2016 for Mac and Word Vie...
CVE-2016-3316
CVE-2016-3316 is a remote-code-execution vulnerability in Microsoft Office Word (Word 2013 SP1/RT SP1, 2016, and Word 2016 for Mac) caused by improper handling of memory objects when opening a crafted file. Public sources describe exploitation via specially crafted Word documents to execute arbit...
CVE-2016-0122
CVE-2016-0122 affects Microsoft Office Excel across multiple versions (2007 SP3, 2010 SP2, 2013 SP1/RT SP1, 2016) and Office components; the vulnerability is a memory corruption/out-of-bounds read in Excel that enables remote code execution when a specially crafted Office document is opened. An e...
CVE-2016-0022
CVE-2016-0022 corresponds to a memory corruption vulnerability in Microsoft Office components (Word and related Word/Office Suite on Windows and Mac) that could allow remote code execution via a crafted Office document. Connected sources indicate this is tied to MS16-015 and affects Word 2007 SP3...
CVE-2016-3357
CVE-2016-3357 is a Microsoft Office memory corruption vulnerability: multiple Office components (Word/Excel/PowerPoint and related servers) allow remote code execution via a crafted document. Root cause cited as improper handling of objects in memory. Affected products span Office 2007 SP3 throug...
CVE-2016-7290
CVE-2016-7290 affects Microsoft Word/Office components (Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, Office Web Apps 2010 SP2). The vulnerability allows a crafted document to cause an out-o...
CVE-2016-0198
Microsoft Office memory corruption vulnerability CVE-2016-0198 allows remote code execution when processing specially crafted Office documents. Affected products include Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac...
CVE-2016-0134
CVE-2016-0134 affects multiple Microsoft Office products, including Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1/RT SP1, Word 2016, Word for Mac 2011/2016, Office Compatibility Pack SP3, and related SharePoint/Web Apps components. The vulnerability is described as a memory corrupt...
CVE-2016-3282
CVE-2016-3282 is a Microsoft Office remote code execution vulnerability arising from memory corruption in Office components (Word, Word Automation Services, SharePoint-related components, etc.). It affects a broad set of Office products across Windows and macOS (Word 2007 SP3, Office 2010 SP2, Wo...
CVE-2016-3317
CVE-2016-3317 describes a memory corruption vulnerability in Microsoft Office components (Office 2010 SP2, Word 2007 SP3/2010 SP2, Word for Mac 2011, Word 2016 for Mac, Word Viewer) that could allow remote code execution when a user opens a crafted file. The issue is part of multiple related Offi...
CVE-2016-7291
CVE-2016-7291 affects Microsoft Office components including Word 2007 SP3, Office 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2. A crafted document can cause information disclosure by reading memory...
CVE-2016-0139
CVE-2016-0139 is a memory corruption vulnerability in Microsoft Office products (Excel 2010 SP2, Word for Mac 2011, Excel Viewer) that enables remote code execution when a crafted Office document is opened. Multiple connected sources confirm it stems from improper handling of objects in memory, a...
CVE-2016-7233
CVE-2016-7233 is an information-disclosure/out-of-bounds-read vulnerability in multiple Microsoft Office components (e.g., Word 2007, Office 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Viewer, Office Web Apps 2010 SP2, SharePoint 2013 components, and Office Automation Services). A craft...
CVE-2016-0052
The CVE-2016-0052 issue affects Microsoft Word/Office across multiple versions (Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Serve...
CVE-2016-7268
CVE-2016-7268 is an information-disclosure/Memory-read vulnerability in Microsoft Office products. The initial description lists how crafted Office documents can cause an out-of-bounds read or memory disclosure, allowing remote attackers to obtain sensitive information from process memory. Affect...
CVE-2017-0105
CVE-2017-0105 is an information-disclosure vulnerability in Microsoft Office components (Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Office Web Apps 2010 SP2) caused by an out-of-bounds re...
CVE-2016-7234
CVE-2016-7234 is a memory-corruption vulnerability in Microsoft Office products (e.g., Word 2007, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word for Mac 2011, Excel for Mac 2011, Word 2016 for Mac, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and related components) that allows...
CVE-2016-3281
CVE-2016-3281 is a Microsoft Office memory corruption vulnerability affecting Office 2010 SP2, Word 2010 SP2, Word 2013 SP1/RT, Word 2016, Word for Mac 2011, Word 2016 for Mac, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2. The root cause is memory corruptio...
CVE-2016-3280
CVE-2016-3280 is a Microsoft Office/Word memory-corruption vulnerability that allows remote code execution via crafted Office documents. The CVE affects Word and related components across multiple platforms (Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for ...
CVE-2016-7235
CVE-2016-7235 is a memory-corruption vulnerability in Microsoft Office components that allows remote code execution via a crafted Office document. Affected products include Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, and Office Compatibility Pack SP3. The Roo...
CVE-2016-7232
CVE-2016-7232 is a memory corruption vulnerability in Microsoft Office components (Word 2007; Office 2010 SP2; Word 2010 SP2; Word for Mac 2011; Office Compatibility Pack SP3) that allows remote code execution via a crafted Office document. Affected systems are mitigated by MS16-133 security upda...
CVE-2016-0010
CVE-2016-0010 is a Microsoft Office memory corruption vulnerability that can allow remote code execution when a crafted Office document is opened. Affected products include Office 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016, and Mac versions (Office for Mac 2011/2016) plus Word/Excel/PowerPoi...