|
284331
|
- |
|
microsoft
|
excel
excel_viewer
office
open_xml_file_format_converter
|
http://www.microsoft.com/technet/security/Bulletin/MS08-074.mspx
Excel Global Array Memory Corruption Vulnerability - CVE-2008-4266
A remote code execution vulnerability exists in Microsoft …
|
CWE-399
Resource Management Errors
|
CVE-2008-4266
|
2018-10-13 06:48 |
2008-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284332
|
- |
|
microsoft
|
outlook_express
windows_mail
|
The MHTML protocol handler in a component of Microsoft Outlook Express 5.5 SP2 and 6 through SP1, and Windows Mail, does not assign the correct Internet Explorer Security Zone to UNC share pathnames,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1448
|
2018-10-13 06:47 |
2008-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284333
|
- |
|
microsoft
|
windows-nt
windows_vista
windows_xp
|
The Bluetooth stack in Microsoft Windows XP SP2 and SP3, and Vista Gold and SP1, allows physically proximate attackers to execute arbitrary code via a large series of Service Discovery Protocol (SDP)…
|
CWE-20
Improper Input Validation
|
CVE-2008-1453
|
2018-10-13 06:47 |
2008-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284334
|
- |
|
microsoft
|
windows_2000
windows_2003_server
windows_xp
|
Heap-based buffer overflow in the InternalOpenColorProfile function in mscms.dll in Microsoft Windows Image Color Management System (MSCMS) in the Image Color Management (ICM) component on Windows 20…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2245
|
2018-10-13 06:47 |
2008-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284335
|
- |
|
microsoft
|
internet_explorer
|
Cross-domain vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 7 allows remote attackers to access restricted information from other domains via JavaScript that uses the Object data type …
|
CWE-284
Improper Access Control
|
CVE-2008-2947
|
2018-10-13 06:47 |
2008-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284336
|
- |
|
microsoft
|
office
|
Microsoft Office Excel 2007 Gold and SP1 does not properly delete the PWD (password) string from connections.xml when a .xlsx file is configured not to save the remote data session password, which al…
|
CWE-20
Improper Input Validation
|
CVE-2008-3003
|
2018-10-13 06:47 |
2008-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284337
|
- |
|
microsoft
|
office
office_onenote
|
Argument injection vulnerability in a URI handler in Microsoft Office XP SP3, 2003 SP2 and SP3, 2007 Office System Gold and SP1, and Office OneNote 2007 Gold and SP1 allow remote attackers to execute…
|
CWE-20
Improper Input Validation
|
CVE-2008-3007
|
2018-10-13 06:47 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284338
|
- |
|
microsoft
|
windows_media_player
|
Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1 and 9 incorrectly associate ISATAP addresses with the Local Intranet zone, which allows…
|
CWE-200
Information Exposure
|
CVE-2008-3010
|
2018-10-13 06:47 |
2008-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284339
|
- |
|
microsoft
|
digital_image_suite
forefront_client_security
office
office_powerpoint_viewer
report_viewer
sql_server
sql_server_reporting_services
visio
works
|
Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image …
|
CWE-189
Numeric Errors
|
CVE-2008-3015
|
2018-10-13 06:47 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284340
|
- |
|
microsoft
|
office
office_converter_pack
works
|
Microsoft Office 2000 SP3, XP SP3, and 2003 SP2; Office Converter Pack; and Works 8 do not properly parse the length of a PICT file, which allows remote attackers to execute arbitrary code via a craf…
|
CWE-94
Code Injection
|
CVE-2008-3018
|
2018-10-13 06:47 |
2008-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
