|
304911
|
8.8 |
HIGH
Network
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in the CAttrArray::PrivateFind function in mshtml.dll in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code by setting an unspecifi…
|
CWE-416
Use After Free
|
CVE-2010-3328
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304912
|
- |
|
microsoft
|
internet_explorer
|
The implementation of HTML content creation in Microsoft Internet Explorer 6 through 8 does not remove the Anchor element during pasting and editing, which might allow remote attackers to obtain sens…
|
CWE-200
Information Exposure
|
CVE-2010-3327
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304913
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i…
|
CWE-94
Code Injection
|
CVE-2010-3326
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304914
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 8 does not properly handle unspecified special characters in Cascading Style Sheets (CSS) documents, which allows remote attackers to obtain sensitive informatio…
|
CWE-200
Information Exposure
|
CVE-2010-3325
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304915
|
- |
|
microsoft
|
sharepoint_services
sharepoint_server
internet_explorer
|
Cross-site scripting (XSS) vulnerability in the toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2 and Office SharePoin…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3243
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304916
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
|
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code…
|
CWE-20
Improper Input Validation
|
CVE-2010-3242
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304917
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
|
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate binary file-format information, which allows remote attackers to execute ar…
|
CWE-20
Improper Input Validation
|
CVE-2010-3241
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304918
|
- |
|
microsoft
|
excel
excel_viewer
office_compatibility_pack
|
Microsoft Excel 2002 SP3 and 2007 SP2; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate record information, which allows …
|
CWE-20
Improper Input Validation
|
CVE-2010-3240
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304919
|
- |
|
microsoft
|
excel
|
Microsoft Excel 2002 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Extra Out of Boundary Record Parsing…
|
CWE-20
Improper Input Validation
|
CVE-2010-3239
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304920
|
- |
|
microsoft
|
office
excel
|
Microsoft Excel 2002 SP3 and 2003 SP3, and Office 2004 for Mac, does not properly validate binary file-format information, which allows remote attackers to execute arbitrary code via a crafted Excel …
|
CWE-20
Improper Input Validation
|
CVE-2010-3238
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
