6 matches found
CVE-2004-0848
CVE-2004-0848 corresponds to a buffer overflow in Microsoft Office XP that can allow remote code execution via specially crafted HTML links referencing URL file locations. Connected advisories detail that the overflow occurs in the Office process handling URL file references, enabling arbitrary c...
CVE-2003-0820
CVE-2003-0820 / CVE-2003-0821 describe buffer overrun and macro security bypass in Microsoft Word and Excel (Word 97–2002, Works Suite 2001–2004). Root cause: improper validation of data lengths in Macro Names (Word) and related macro handling, enabling arbitrary code execution when a user opens ...
CVE-2006-0009
CVE-2006-0009 is the Office routing slip remote code execution vulnerability. A buffer/memory corruption occurs when parsing a routing slip in an Office document, potentially allowing arbitrary code execution. Affected products include Microsoft Office 2000 SP3, Office XP SP3, and related PowerPo...
CVE-2003-0664
Microsoft Word 2000/97/98(J)/2002 contains a vulnerability where Word’s macro-security checks fail for certain document properties, allowing a malicious document to bypass macro security and automatically execute arbitrary macros. Impact: remote code execution likely under the user’s privileges w...
CVE-2003-0821
CVE-2003-0821 covers a remote-code-execution vulnerability in Microsoft Excel 97, 2000, and 2002 due to a malicious Excel 4/XLM macro that bypasses the macro security model. Affected products could execute arbitrary code when a user opens a specially crafted spreadsheet, with the attacker potenti...
CVE-2004-0573
CVE-2004-0573 describes a buffer overflow in the Microsoft WordPerfect 5.x Converter used by Office 2000, Office XP, Office 2003, and Works Suite 2001–2004. The overflow occurs when reading an overly long WordPerfect 5.x document, allowing a remote attacker to execute arbitrary code with the priv...