This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:office:2007:sp3
Detail
VendorMicrosoftFirst view 2011-12-13
ProductOfficeLast view2018-01-22
Version2007TypeApplication
Edition 
Language 
Updatesp3 
 
CPE Productcpe:/a:microsoft:office

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32018-01-22CVE-2018-0862NetworkMediumNone Requ...
9.32018-01-22CVE-2018-0849NetworkMediumNone Requ...
9.32018-01-22CVE-2018-0848NetworkMediumNone Requ...
9.32018-01-22CVE-2018-0845NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0812NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32018-01-09CVE-2018-0807NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0806NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0805NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0804NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0802NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0801NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0798NetworkMediumNone Requ...
9.32017-11-14CVE-2017-11882NetworkMediumNone Requ...
9.32017-09-12CVE-2017-8744NetworkMediumNone Requ...
9.32017-07-11CVE-2017-8570NetworkMediumNone Requ...
9.32017-07-11CVE-2017-0243NetworkMediumNone Requ...
4.32017-06-14CVE-2017-8534NetworkMediumNone Requ...
4.32017-06-14CVE-2017-8533NetworkMediumNone Requ...
4.32017-06-14CVE-2017-8532NetworkMediumNone Requ...
4.32017-06-14CVE-2017-8531NetworkMediumNone Requ...
9.32017-06-14CVE-2017-8528NetworkMediumNone Requ...
9.32017-06-14CVE-2017-8527NetworkMediumNone Requ...
9.32017-06-14CVE-2017-8512NetworkMediumNone Requ...
9.32017-06-14CVE-2017-8510NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
52% (45)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
16% (14)CWE-20Improper Input Validation
11% (10)CWE-200Information Exposure
5% (5)CWE-94Failure to Control Generation of Code ('Code Injection')
4% (4)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 5 More...
%idName
3% (3)CWE-399Resource Management Errors
1% (1)CWE-284Access Control (Authorization) Issues
1% (1)CWE-189Numeric Errors
1% (1)CWE-125Out-of-bounds Read
1% (1)CWE-19Data Handling

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:17341TrueType Font Parsing Vulnerability - CVE-2013-3129 (MS13-052, MS13-053, MS13...
oval:org.mitre.oval:def:17323TrueType font parsing vulnerability in Microsoft Silverlight - CVE-2013-3129,...
oval:org.mitre.oval:def:15447MSCOMCTL.OCX RCE Vulnerability - MS12-060
oval:org.mitre.oval:def:28723Microsoft Office memory corruption vulnerability – CVE-2015-1683 (MS15-046)
oval:org.mitre.oval:def:15458MSXML XSLT Vulnerability - MS13-002
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:19178WPD File Format Memory Corruption Vulnerability in Microsoft Office (CVE-2013...
oval:org.mitre.oval:def:24454MSCOMCTL ASLR Vulnerability (CVE-2014-1809) - MS14-024
oval:org.mitre.oval:def:15462MSCOMCTL.OCX RCE Vulnerability
oval:org.mitre.oval:def:19321Word Heap Overwrite Vulnerability in Microsoft Office (CVE-2013-1325) - MS13-091
oval:org.mitre.oval:def:28875TrueType font parsing vulnerability - CVE-2015-1671 (MS15-044) (Mac OS X)
oval:org.mitre.oval:def:28207TrueType font parsing vulnerability - CVE-2015-1671 (MS15-044)
oval:org.mitre.oval:def:19009Word Memory Corruption Vulnerability (CVE-2013-3854) - MS13-072
oval:org.mitre.oval:def:21019Microsoft Graphics Component Memory Corruption Vulnerability (CVE-2013-3906) ...
oval:org.mitre.oval:def:15195MSXML Uninitialized Memory Corruption Vulnerability - MS12-043
oval:org.mitre.oval:def:27937Microsoft Office component use after free vulnerability - CVE-2014-6364 (MS14...
oval:org.mitre.oval:def:15628GDI+ Heap Overflow Vulnerability
oval:org.mitre.oval:def:15667TrueType Font Parsing Vulnerability (CVE-2012-0159)
oval:org.mitre.oval:def:15388TrueType Font Parsing Vulnerability (CVE-2012-0159)
oval:org.mitre.oval:def:19162Word Stack Buffer Overwrite Vulnerability in Microsoft Office (CVE-2013-1324)...
oval:org.mitre.oval:def:20980HXDS ASLR Vulnerability (CVE-2013-5057) - MS13-106
oval:org.mitre.oval:def:14558TrueType Font Parsing Vulnerability
oval:org.mitre.oval:def:18464Word Memory Corruption Vulnerability (CVE-2013-3853) - MS13-072
oval:org.mitre.oval:def:27110Microsoft word file format vulnerability - CVE-2014-4117 (MS14-061) (Mac OS X)
oval:org.mitre.oval:def:27041Microsoft word file format vulnerability - CVE-2014-4117 (MS14-061)
oval:org.mitre.oval:def:24582Microsoft Office chinese grammar checking vulnerability (CVE-2014-1756) - MS1...

SAINT Exploits

DescriptionLink
Microsoft Windows Common Controls MSCOMCTL.OCX VulnerabilityMore info here
Microsoft XML Core Services memory corruptionMore info here
Microsoft Word and WordPad RTF HTA handler command executionMore info here

Open Source Vulnerability Database (OSVDB)

idDescription
77659Microsoft Office Use-after-free Border Property Word Document Handling Remote...

ExploitDB Exploits

idDescription
30011Microsoft Tagged Image File Format (TIFF) Integer Overflow

OpenVAS Exploits

idDescription
2012-08-15Name : Microsoft Office Remote Code Execution Vulnerability (2731879)
File : nvt/secpod_ms12-057.nasl
2012-08-15Name : Microsoft Windows Common Controls Remote Code Execution Vulnerability (2720573)
File : nvt/secpod_ms12-060.nasl
2012-07-11Name : Visual Basic for Applications Remote Code Execution Vulnerability (2707960)
File : nvt/secpod_ms12-046.nasl
2012-06-14Name : Microsoft XML Core Services Remote Code Execution Vulnerability (2719615)
File : nvt/gb_ms_xml_core_services_code_exec_vuln.nasl
2012-06-13Name : Microsoft Lync Remote Code Execution Vulnerabilities (2707956)
File : nvt/secpod_ms12-039.nasl
Hide | Show 4 More...
idDescription
2012-05-14Name : Microsoft Silverlight Code Execution Vulnerabilities - 2681578 (Mac OS X)
File : nvt/secpod_ms12-034_macosx.nasl
2012-05-09Name : MS Security Update For Microsoft Office, .NET Framework, and Silverlight (268...
File : nvt/secpod_ms12-034.nasl
2012-04-11Name : Microsoft Windows Common Controls Remote Code Execution Vulnerability (2664258)
File : nvt/secpod_ms12-027.nasl
2011-12-14Name : Microsoft Office Remote Code Execution Vulnerability (2590602)
File : nvt/secpod_ms11-089.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0212Multiple Vulnerabilities in Microsoft Graphics Component (MS15-097)
Severity : Category II - VMSKEY : V0061385
2015-A-0214Multiple Vulnerabilities in Microsoft Office (MS15-099)
Severity : Category II - VMSKEY : V0061389
2015-A-0194Multiple Vulnerabilities in Microsoft Office (MS15-081)
Severity : Category II - VMSKEY : V0061307
2015-A-0196Multiple Vulnerabilities in Microsoft Graphics Component (MS15-080)
Severity : Category II - VMSKEY : V0061311
2015-A-0103Multiple Vulnerabilities in Microsoft Office Products (MS15-046)
Severity : Category II - VMSKEY : V0060643
Hide | Show 18 More...
idDescription
2015-B-0018Microsoft Office Security Feature Bypass Vulnerability (MS15-013)
Severity : Category II - VMSKEY : V0058757
2014-A-0187Microsoft Office Remote Code Execution Vulnerability (MS14-082)
Severity : Category II - VMSKEY : V0057707
2014-B-0058Multiple Vulnerabilities in Microsoft Office
Severity : Category II - VMSKEY : V0050431
2014-B-0057Microsoft Common Control Security Feature Bypass Vulnerability
Severity : Category II - VMSKEY : V0050451
2013-B-0135Microsoft Office Security Bypass Vulnerability
Severity : Category II - VMSKEY : V0042585
2013-A-0225Microsoft GDI Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0042593
2013-B-0126Multiple Vulnerabilities in Microsoft Office
Severity : Category II - VMSKEY : V0042306
2013-B-0114Multiple Vulnerabilities in Microsoft Office Excel
Severity : Category II - VMSKEY : V0040757
2013-B-0116Microsoft SharePoint Remote Code Execution Vulnerabilities
Severity : Category II - VMSKEY : V0040765
2013-A-0178Multiple Vulnerabilities in Microsoft Office
Severity : Category II - VMSKEY : V0040289
2013-A-0135Microsoft GDI+ Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0039199
2013-B-0071Multiple Vulnerabilities in Microsoft .NET Framework and Silverlight
Severity : Category II - VMSKEY : V0039211
2013-A-0004Multiple Vulnerabilities in Microsoft XML Core Services
Severity : Category I - VMSKEY : V0036444
2012-B-0075Microsoft Office Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0033652
2012-A-0132Microsoft Windows Common Controls Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0033659
2012-A-0109Microsoft Visual Basic for Applications Remote Code Execution Vulnerability
Severity : Category I - VMSKEY : V0033311
2012-A-0059Microsoft Windows Common Controls Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0031982
2011-A-0163Microsoft Office Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0030834

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2020-01-16Microsoft Word internal OLE object update attempt
RuleID : 52482 - Type : INDICATOR-COMPROMISE - Revision : 1
2020-01-16Microsoft Word internal OLE object update attempt
RuleID : 52481 - Type : INDICATOR-COMPROMISE - Revision : 1
2019-08-13Microsoft Office Equation Editor remote code execution attempt
RuleID : 50695 - Type : MALWARE-OTHER - Revision : 1
2019-08-13Microsoft Office Equation Editor remote code execution attempt
RuleID : 50694 - Type : MALWARE-OTHER - Revision : 1
2019-08-13Microsoft Office Equation Editor RTF evasion attempt
RuleID : 50693 - Type : FILE-OFFICE - Revision : 1
Hide | Show 20 More...
DateDescription
2019-08-13Microsoft Office Equation Editor RTF evasion attempt
RuleID : 50692 - Type : FILE-OFFICE - Revision : 1
2019-08-13Microsoft Office Equation Editor RTF evasion attempt
RuleID : 50691 - Type : FILE-OFFICE - Revision : 1
2019-08-13Microsoft Office Equation Editor RTF evasion attempt
RuleID : 50690 - Type : FILE-OFFICE - Revision : 1
2019-08-13Microsoft Office Equation Editor RTF embedded OLE evasion attempt
RuleID : 50685 - Type : FILE-OFFICE - Revision : 1
2019-08-13Microsoft Office Equation Editor RTF embedded OLE evasion attempt
RuleID : 50684 - Type : FILE-OFFICE - Revision : 1
2019-06-04Win.Doc.Dropper SectorB06 malicious rtf dropper download attempt
RuleID : 50009 - Type : MALWARE-CNC - Revision : 2
2019-06-04Win.Doc.Dropper SectorB06 malicious rtf dropper download attempt
RuleID : 50008 - Type : MALWARE-CNC - Revision : 2
2019-05-24Microsoft Internet Explorer MSXML .definition ActiveX clsid access attempt
RuleID : 49932 - Type : BROWSER-PLUGINS - Revision : 1
2019-05-24Microsoft Internet Explorer MSXML .definition ActiveX clsid access attempt
RuleID : 49931 - Type : BROWSER-PLUGINS - Revision : 1
2019-05-24Microsoft Internet Explorer MSXML .definition ActiveX clsid access attempt
RuleID : 49930 - Type : BROWSER-PLUGINS - Revision : 1
2019-05-24Microsoft Internet Explorer MSXML .definition ActiveX clsid access attempt
RuleID : 49929 - Type : BROWSER-PLUGINS - Revision : 1
2019-05-14Microsoft Office Equation Editor object stack buffer overflow attempt
RuleID : 49776 - Type : FILE-OFFICE - Revision : 1
2019-05-14Microsoft Office Equation Editor object stack buffer overflow attempt
RuleID : 49775 - Type : FILE-OFFICE - Revision : 1
2019-04-18Microsoft Office MSCOMCTL ActiveX control tabstrip method attempt
RuleID : 49496 - Type : FILE-OFFICE - Revision : 1
2019-04-18Microsoft Office MSCOMCTL ActiveX control tabstrip method attempt
RuleID : 49494 - Type : FILE-OFFICE - Revision : 1
2019-03-26Microsoft Office Word styleWithEffects use-after-free attempt
RuleID : 49254 - Type : FILE-OFFICE - Revision : 4
2019-03-26Microsoft Office Word styleWithEffects use-after-free attempt
RuleID : 49253 - Type : FILE-OFFICE - Revision : 4
2018-07-31Microsoft Office Word malformed emf remote code execution attempt
RuleID : 47064 - Type : FILE-OFFICE - Revision : 2
2018-07-31Microsoft Office Word malformed emf remote code execution attempt
RuleID : 47063 - Type : FILE-OFFICE - Revision : 2
2018-05-01Microsoft Office Equation Editor RTF evasion attempt
RuleID : 46107 - Type : FILE-OFFICE - Revision : 1

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2017-11-14Name : The Microsoft Office Products are affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_office.nasl - Type : ACT_GATHER_INFO
2017-10-20Name : The remote Windows host is affected by an information disclosure vulnerability.
File : smb_nt_ms17_apr_4014793.nasl - Type : ACT_GATHER_INFO
2017-09-12Name : The Microsoft Office Products are affected by multiple vulnerabilities.
File : smb_nt_ms17_sep_office.nasl - Type : ACT_GATHER_INFO
2017-07-11Name : An application installed on the remote Windows host is affected by multiple r...
File : smb_nt_ms17_jul_office.nasl - Type : ACT_GATHER_INFO
2017-07-11Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jul_office_sharepoint.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2017-07-11Name : An application installed on the remote Windows host is affected by multiple r...
File : smb_nt_ms17_jul_office_web.nasl - Type : ACT_GATHER_INFO
2017-06-14Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jun_office.nasl - Type : ACT_GATHER_INFO
2017-06-14Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jun_office_sharepoint.nasl - Type : ACT_GATHER_INFO
2017-06-14Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jun_office_web.nasl - Type : ACT_GATHER_INFO
2017-06-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_win2008.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : An application installed on the remote macOS or Mac OS X host is affected by ...
File : macosx_ms17_june_office.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_4022714.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_4022715.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_4022719.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_4022724.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_4022725.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_4022726.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_jun_4022727.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : A web application framework running on the remote host is affected by multipl...
File : smb_nt_ms17_jun_4023307.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : An application installed on the remote Windows host is affected by a remote c...
File : smb_nt_ms17_jun_skype.nasl - Type : ACT_GATHER_INFO
2017-05-10Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_may_office.nasl - Type : ACT_GATHER_INFO
2017-04-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_apr_4015549.nasl - Type : ACT_GATHER_INFO
2017-04-12Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_apr_office.nasl - Type : ACT_GATHER_INFO
2017-04-11Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17-apr_4015551.nasl - Type : ACT_GATHER_INFO
2017-03-20Name : The remote Windows host is affected by multiple vulnerabilities.
File : ms17-010.nasl - Type : ACT_GATHER_INFO