Summary
Detail | |||
---|---|---|---|
Vendor | Microsoft | First view | 1999-01-01 |
Product | Office | Last view | 2024-02-13 |
Version | 2010 | Type | |
Update | sp2 | ||
Edition | x86 | ||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
Related : CVE
Date | Alert | Description | |
---|---|---|---|
9.8 | 2024-02-13 | CVE-2024-21413 | Microsoft Outlook Remote Code Execution Vulnerability |
7.8 | 2024-02-13 | CVE-2024-21379 | Microsoft Word Remote Code Execution Vulnerability |
8.8 | 2024-02-13 | CVE-2024-21378 | Microsoft Outlook Remote Code Execution Vulnerability |
7.8 | 2024-02-13 | CVE-2024-20673 | Microsoft Office Remote Code Execution Vulnerability |
7.8 | 2024-01-09 | CVE-2024-20677 | A security vulnerability exists in FBX that could lead to remote code execution. To mitigate this vulnerability, the ability to insert FBX files has been disabled in Word, Excel, PowerPoint and Outlook for Windows and Mac. Versions of Office that had this feature enabled will no longer have access to it. This includes Office 2019, Office 2021, Office LTSC for Mac 2021, and Microsoft 365. As of February 13, 2024, the ability to insert FBX files has also been disabled in 3D Viewer. 3D models in Office documents that were previously inserted from a FBX file will continue to work as expected unless the Link to File option was chosen at insert time. This change is effective as of the January 9, 2024 security update. |
5.5 | 2023-12-12 | CVE-2023-36009 | Microsoft Word Information Disclosure Vulnerability |
6.5 | 2023-12-12 | CVE-2023-35636 | Microsoft Outlook Information Disclosure Vulnerability |
6.5 | 2023-11-14 | CVE-2023-36413 | Microsoft Office Security Feature Bypass Vulnerability |
7.8 | 2023-11-14 | CVE-2023-36045 | Microsoft Office Graphics Remote Code Execution Vulnerability |
7.8 | 2023-11-14 | CVE-2023-36041 | Microsoft Excel Remote Code Execution Vulnerability |
7.8 | 2023-11-14 | CVE-2023-36037 | Microsoft Excel Security Feature Bypass Vulnerability |
8.4 | 2023-10-10 | CVE-2023-36569 | Microsoft Office Elevation of Privilege Vulnerability |
7 | 2023-10-10 | CVE-2023-36568 | Microsoft Office Click-To-Run Elevation of Privilege Vulnerability |
7 | 2023-10-10 | CVE-2023-36565 | Microsoft Office Graphics Elevation of Privilege Vulnerability |
5.5 | 2023-09-12 | CVE-2023-41764 | Microsoft Office Spoofing Vulnerability |
4.3 | 2023-09-12 | CVE-2023-36767 | Microsoft Office Security Feature Bypass Vulnerability |
5.5 | 2023-09-12 | CVE-2023-36766 | Microsoft Excel Information Disclosure Vulnerability |
9.8 | 2023-09-12 | CVE-2023-36765 | Microsoft Office Elevation of Privilege Vulnerability |
7.5 | 2023-09-12 | CVE-2023-36763 | Microsoft Outlook Information Disclosure Vulnerability |
7.3 | 2023-09-12 | CVE-2023-36762 | Microsoft Word Remote Code Execution Vulnerability |
5.3 | 2023-09-12 | CVE-2023-36761 | Microsoft Word Information Disclosure Vulnerability |
6.5 | 2023-08-08 | CVE-2023-36897 | Visual Studio Tools for Office Runtime Spoofing Vulnerability |
7.8 | 2023-08-08 | CVE-2023-36896 | Microsoft Excel Remote Code Execution Vulnerability |
7.8 | 2023-08-08 | CVE-2023-36895 | Microsoft Outlook Remote Code Execution Vulnerability |
6.5 | 2023-08-08 | CVE-2023-36893 | Microsoft Outlook Spoofing Vulnerability |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
29% (127) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
18% (81) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
10% (45) | CWE-200 | Information Exposure |
9% (42) | CWE-20 | Improper Input Validation |
7% (32) | CWE-399 | Resource Management Errors |
4% (18) | CWE-787 | Out-of-bounds Write |
3% (16) | CWE-189 | Numeric Errors |
3% (13) | CWE-264 | Permissions, Privileges, and Access Controls |
3% (13) | CWE-125 | Out-of-bounds Read |
2% (12) | CWE-416 | Use After Free |
1% (7) | CWE-19 | Data Handling |
0% (3) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
0% (2) | CWE-284 | Access Control (Authorization) Issues |
0% (2) | CWE-254 | Security Features |
0% (1) | CWE-732 | Incorrect Permission Assignment for Critical Resource |
0% (1) | CWE-668 | Exposure of Resource to Wrong Sphere |
0% (1) | CWE-665 | Improper Initialization |
0% (1) | CWE-601 | URL Redirection to Untrusted Site ('Open Redirect') |
0% (1) | CWE-415 | Double Free |
0% (1) | CWE-401 | Failure to Release Memory Before Removing Last Reference ('Memory L... |
0% (1) | CWE-346 | Origin Validation Error |
0% (1) | CWE-312 | Cleartext Storage of Sensitive Information |
0% (1) | CWE-294 | Authentication Bypass by Capture-replay |
0% (1) | CWE-255 | Credentials Management |
0% (1) | CWE-191 | Integer Underflow (Wrap or Wraparound) |
CAPEC : Common Attack Pattern Enumeration & Classification
id | Name |
---|---|
CAPEC-8 | Buffer Overflow in an API Call |
CAPEC-9 | Buffer Overflow in Local Command-Line Utilities |
CAPEC-10 | Buffer Overflow via Environment Variables |
CAPEC-14 | Client-side Injection-induced Buffer Overflow |
CAPEC-24 | Filter Failure through Buffer Overflow |
CAPEC-26 | Leveraging Race Conditions |
CAPEC-29 | Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions |
CAPEC-38 | Leveraging/Manipulating Configuration File Search Paths |
CAPEC-41 | Using Meta-characters in E-mail Headers to Inject Malicious Payloads |
CAPEC-42 | MIME Conversion |
CAPEC-44 | Overflow Binary Resource File |
CAPEC-45 | Buffer Overflow via Symbolic Links |
CAPEC-46 | Overflow Variables and Tags |
CAPEC-47 | Buffer Overflow via Parameter Expansion |
CAPEC-88 | OS Command Injection |
CAPEC-100 | Overflow Buffers |
CAPEC-133 | Try All Common Application Switches and Options |
CAPEC-172 | Time and State Attacks |
Oval Markup Language : Definitions
OvalID | Name |
---|---|
oval:org.mitre.oval:def:843 | MS Outlook Argument Injection Local Vulnerability |
oval:org.mitre.oval:def:4307 | GDI+ JPEG Parsing Engine Buffer Overflow (VS.NET 2002) |
oval:org.mitre.oval:def:4216 | GDI+ JPEG Parsing Engine Buffer Overflow (IE6) |
oval:org.mitre.oval:def:4003 | GDI+ JPEG Parsing Engine Buffer Overflow (Windows XP) |
oval:org.mitre.oval:def:3881 | GDI+ JPEG Parsing Engine Buffer Overflow (Office XP,SP2) |
oval:org.mitre.oval:def:3810 | GDI+ JPEG Parsing Engine Buffer Overflow (Project 2003) |
oval:org.mitre.oval:def:3320 | GDI+ JPEG Parsing Engine Buffer Overflow Microsoft Office Visio Pro 2003 |
oval:org.mitre.oval:def:3082 | GDI+ JPEG Parsing Engine Buffer Overflow (Visio Pro 2002) |
oval:org.mitre.oval:def:3038 | GDI+ JPEG Parsing Engine Buffer Overflow (Project 2002,SP1) |
oval:org.mitre.oval:def:2706 | GDI+ JPEG Parsing Engine Buffer Overflow (Office 2003) |
oval:org.mitre.oval:def:1721 | GDI+ JPEG Parsing Engine Buffer Overflow (VS.NET 2003) |
oval:org.mitre.oval:def:1105 | GDI+ JPEG Parsing Engine Buffer Overflow (Server 2003) |
oval:org.mitre.oval:def:4005 | Office XP, SP2 WordPerfect Converter Buffer Overflow |
oval:org.mitre.oval:def:3333 | Office XP, SP3 WordPerfect Converter Buffer Overflow |
oval:org.mitre.oval:def:3311 | Office 2003 WordPerfect Converter Buffer Overflow |
oval:org.mitre.oval:def:2670 | Office 2000 WordPerfect Converter Buffer Overflow |
oval:org.mitre.oval:def:4226 | Excel 2002 File Handler Code Execution Vulnerability |
oval:org.mitre.oval:def:2673 | Excel 2000 File Handler Code Execution Vulnerability |
oval:org.mitre.oval:def:4022 | Office XP URL Buffer Overflow |
oval:org.mitre.oval:def:2738 | Microsoft Office Visio Professional URL Buffer Overflow |
oval:org.mitre.oval:def:2348 | Windows Project Professional URL Buffer Overflow |
oval:org.mitre.oval:def:1538 | Win2K/XP,SP1 DDS Library Shape Control Buffer Overflow |
oval:org.mitre.oval:def:1535 | Win2k,SP4 DDS Library Shape Control Buffer Overflow |
oval:org.mitre.oval:def:1468 | WinXP,SP2 DDS Library Shape Control Buffer Overflow |
oval:org.mitre.oval:def:1464 | Server 2003,SP1 DDS Library Shape Control Buffer Overflow |
SAINT Exploits
Description | Link |
---|---|
Microsoft Jet Engine MDB file ColumnName buffer overflow | More info here |
Microsoft Office Excel PivotTable Cache Data Record Handling Overflow | More info here |
Microsoft Excel FORMAT record array index memory corruption | More info here |
Microsoft Office Word RTF Parsing Engine Memory Corruption | More info here |
Microsoft PowerPoint OEPlaceholderAtom placementId memory corruption | More info here |
Microsoft Excel PALETTE record buffer overflow | More info here |
Microsoft Excel Substream Parsing Integer Overflow | More info here |
Microsoft Excel Data Validation Record Parsing Overflow | More info here |
Microsoft Excel Named Graph record buffer overflow | More info here |
Microsoft Excel DbOrParamQry memory corruption | More info here |
Microsoft Office Drawing Shapes memory corruption vulnerability | More info here |
Microsoft Excel formula parsing integer overflow | More info here |
Microsoft Works File Converter FontName buffer overflow | More info here |
Microsoft Excel conditional formatting vulnerability | More info here |
Microsoft Office PNG File Handling Buffer Overflow | More info here |
Microsoft Windows Common Controls MSCOMCTL.OCX Vulnerability | More info here |
Microsoft Excel Drawing Exception Handling vulnerability | More info here |
MS Office Word malformed Sprm record buffer overflow | More info here |
Microsoft Office RTF pFragments Property Stack Buffer Overflow | More info here |
Microsoft Office Web Components OWC.Spreadsheet Evaluate method vulnerability | More info here |
Microsoft Works File Converter index table vulnerability | More info here |
Microsoft PowerPoint Floating Point Techno-color Time Bandit vulnerability | More info here |
Microsoft Office FlashPix Image Converter Dictionary property buffer overflow | More info here |
Microsoft Excel BIFF format Qsir record memory corruption | More info here |
Microsoft Word and WordPad RTF HTA handler command execution | More info here |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
77664 | Microsoft Office PowerPoint OfficeArt Shape Record PowerPoint File Handling R... |
77661 | Microsoft Office Excel Record Parsing Object Handling Remote Memory Corruption |
77659 | Microsoft Office Use-after-free Border Property Word Document Handling Remote... |
75387 | Microsoft Office Excel Unspecified Signedness Error Excel File Handling Memor... |
75386 | Microsoft Office Excel Unspecified Conditional Expression Parsing Excel File ... |
75385 | Microsoft Office Excel Unspecified Excel File Record Handling Memory Corruption |
75384 | Microsoft Office Excel Unspecified Array-Indexing Weakness Excel File Handlin... |
75380 | Microsoft Office MSO.dll Object Pointer Dereference Word Document Handling Re... |
75379 | Microsoft Office MSO.dll Path Subversion Arbitrary DLL Injection Code Execution |
72927 | Microsoft Office Excel Out of Bounds WriteAV Unspecified Arbitrary Code Execu... |
72926 | Microsoft Office Excel WriteAV Unspecified Arbitrary Code Execution |
72925 | Microsoft Office Excel File Handling Unspecified Memory Corruption |
72924 | Microsoft Office Excel File Handling Unspecified Buffer Overflow |
72923 | Microsoft Office Excel Unspecified Memory Heap Overwrite Arbitrary Code Execu... |
72922 | Microsoft Office Excel Out of Bounds Array Access Unspecified Arbitrary Code ... |
72921 | Microsoft Office Excel Improper Record Parsing Unspecified Arbitrary Code Exe... |
72920 | Microsoft Office Excel Insufficient Record Validation Unspecified Arbitrary C... |
72235 | Microsoft Office PowerPoint File Handling Unspecified Memory Corruption |
71779 | Microsoft Windows/Office GDI+ (gdiplus.dll) EMF File Processing Overflow |
71771 | Microsoft Office PowerPoint TimeColorBehaviorContainer (Techno-color Time Ban... |
71770 | Microsoft Office PowerPoint PersistDirectoryEntry Processing Remote Code Exec... |
71767 | Microsoft Office Path Subversion Arbitrary DLL Injection Code Execution |
71765 | Microsoft Office Excel File Validation Record Handling Overflow |
71764 | Microsoft Office Excel File Handling Dangling Pointer Remote Code Execution |
71763 | Microsoft Office Excel File Handling Linked List Corruption Remote Code Execu... |
ExploitDB Exploits
id | Description |
---|---|
32793 | MS14-017 Microsoft Word RTF Object Confusion |
30011 | Microsoft Tagged Image File Format (TIFF) Integer Overflow |
28198 | Microsoft Office 2000/2002 Property Code Execution Vulnerability |
18894 | Windows XP Keyboard Layouts Pool Corruption LPE 0day PoC (post-MS12-034) |
18143 | MS11-038 Microsoft Office Excel Malformed OBJ Record Handling Overflow |
18087 | MS11-021 Microsoft Office 2007 Excel .xlb Buffer Overflow |
17643 | Excel SLYK Format Parsing Buffer Overrun Vulnerability PoC |
17544 | GDI+ CreateDashedPath Integer overflow in gdiplus.dll |
17474 | MS Office 2010 RTF Header Stack Overflow Vulnerability Exploit |
17227 | Microsoft Office Excel Axis Properties Record Parsing Buffer Overflow PoC |
15158 | MOAUB #30 - Microsoft Unicode Scripts Processor Remote Code Execution |
15148 | MOAUB #29 - Microsoft Excel SxView Record Parsing Heap Memory Corruption |
15094 | MOAUB #24 - Microsoft Excel OBJ Record Stack Overflow |
15065 | MOAUB #21 - Microsoft Excel WOPT Record Parsing Heap Memory Corruption |
15019 | MOAUB #16 - Microsoft Excel HFPicture Record Parsing Remote Code Execution Vu... |
14971 | MOAUB #11 - Microsoft Office Word 2007 sprmCMajority Buffer Overflow |
14706 | MS Excel Malformed FEATHEADER Record Exploit (MS09-067) |
14361 | Microsoft Excel 0x5D record Stack Overflow Vulnerability |
OpenVAS Exploits
id | Description |
---|---|
2012-11-14 | Name : Microsoft Office Remote Code Execution Vulnerabilities (2720184) File : nvt/secpod_ms12-076.nasl |
2012-11-14 | Name : Microsoft Office Remote Code Execution Vulnerabilities - 2720184 (Mac OS X) File : nvt/secpod_ms12-076_macosx.nasl |
2012-11-08 | Name : Microsoft Office Excel ReadAV Arbitrary Code Execution Vulnerability File : nvt/secpod_ms_office_excel_readav_code_exec_vuln.nasl |
2012-08-15 | Name : Microsoft Windows Common Controls Remote Code Execution Vulnerability (2720573) File : nvt/secpod_ms12-060.nasl |
2012-08-15 | Name : Microsoft Office Remote Code Execution Vulnerability (2731879) File : nvt/secpod_ms12-057.nasl |
2012-07-11 | Name : Microsoft Office Privilege Elevation Vulnerability - 2721015 (Mac OS X) File : nvt/secpod_ms12-051_macosx.nasl |
2012-07-11 | Name : Visual Basic for Applications Remote Code Execution Vulnerability (2707960) File : nvt/secpod_ms12-046.nasl |
2012-06-13 | Name : Microsoft Lync Remote Code Execution Vulnerabilities (2707956) File : nvt/secpod_ms12-039.nasl |
2012-05-14 | Name : Microsoft Silverlight Code Execution Vulnerabilities - 2681578 (Mac OS X) File : nvt/secpod_ms12-034_macosx.nasl |
2012-05-09 | Name : Microsoft Office Word Remote Code Execution Vulnerability-2680352 (Mac OS X) File : nvt/secpod_ms12-029_macosx.nasl |
2012-05-09 | Name : Microsoft Office Word Remote Code Execution Vulnerability (2680352) File : nvt/secpod_ms12-029.nasl |
2012-05-09 | Name : Microsoft Office Remote Code Execution Vulnerabilities (2663830) File : nvt/secpod_ms12-030.nasl |
2012-05-09 | Name : Microsoft Office Remote Code Execution Vulnerabilities-2663830 (Mac OS X) File : nvt/secpod_ms12-030_macosx.nasl |
2012-05-09 | Name : MS Security Update For Microsoft Office, .NET Framework, and Silverlight (268... File : nvt/secpod_ms12-034.nasl |
2012-04-11 | Name : Microsoft Office Remote Code Execution Vulnerability (2639185) File : nvt/secpod_ms12-028.nasl |
2012-04-11 | Name : Microsoft Windows Common Controls Remote Code Execution Vulnerability (2664258) File : nvt/secpod_ms12-027.nasl |
2011-12-14 | Name : Microsoft Office Excel Remote Code Execution Vulnerability (2640241) File : nvt/secpod_ms11-096.nasl |
2011-12-14 | Name : Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (2639142) File : nvt/secpod_ms11-094.nasl |
2011-12-14 | Name : Microsoft Office Remote Code Execution Vulnerability (2590602) File : nvt/secpod_ms11-089.nasl |
2011-09-14 | Name : Microsoft Office Remote Code Execution Vulnerabilites (2587634) File : nvt/secpod_ms11-073.nasl |
2011-09-14 | Name : Microsoft Office Excel Remote Code Execution Vulnerabilities (2587505) File : nvt/secpod_ms11-072.nasl |
2011-08-11 | Name : Microsoft Windows Insecure Library Loading Vulnerability (2269637) File : nvt/gb_ms_insecure_lib_loading_vuln.nasl |
2011-06-15 | Name : Microsoft Office Excel Remote Code Execution Vulnerabilities (2537146) File : nvt/secpod_ms11-045.nasl |
2011-05-11 | Name : Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (2545814) File : nvt/secpod_ms11-036.nasl |
2011-04-13 | Name : Microsoft Office Excel Remote Code Execution Vulnerabilities (2489279) File : nvt/secpod_ms11-021.nasl |
Information Assurance Vulnerability Management (IAVM)
id | Description |
---|---|
2015-A-0214 | Multiple Vulnerabilities in Microsoft Office (MS15-099) Severity: Category II - VMSKEY: V0061389 |
2015-A-0212 | Multiple Vulnerabilities in Microsoft Graphics Component (MS15-097) Severity: Category II - VMSKEY: V0061385 |
2015-A-0197 | Microsoft Command Line Parameter Information Disclosure Vulnerability (MS15-088) Severity: Category II - VMSKEY: V0061313 |
2015-A-0196 | Multiple Vulnerabilities in Microsoft Graphics Component (MS15-080) Severity: Category II - VMSKEY: V0061311 |
2015-A-0194 | Multiple Vulnerabilities in Microsoft Office (MS15-081) Severity: Category II - VMSKEY: V0061307 |
2015-A-0188 | Cumulative Security Update for Microsoft Internet Explorer (MS15-079) Severity: Category I - VMSKEY: V0061297 |
2015-A-0163 | Multiple Vulnerabilities in Microsoft Office (MS15-070) Severity: Category II - VMSKEY: V0061121 |
2015-B-0071 | Multiple Vulnerabilities in Microsoft Office (MS15-059) Severity: Category II - VMSKEY: V0060957 |
2015-A-0103 | Multiple Vulnerabilities in Microsoft Office Products (MS15-046) Severity: Category II - VMSKEY: V0060643 |
2015-A-0090 | Multiple Vulnerabilities in Microsoft Office (MS15-033) Severity: Category II - VMSKEY: V0059895 |
2015-A-0052 | Multiple Vulnerabilities in Microsoft Office (MS15-022) Severity: Category II - VMSKEY: V0058999 |
2015-B-0018 | Microsoft Office Security Feature Bypass Vulnerability (MS15-013) Severity: Category II - VMSKEY: V0058757 |
2015-A-0037 | Multiple Remote Code Execution Vulnerabilities in Microsoft Office (MS15-012) Severity: Category II - VMSKEY: V0058751 |
2014-A-0187 | Microsoft Office Remote Code Execution Vulnerability (MS14-082) Severity: Category II - VMSKEY: V0057707 |
2014-A-0190 | Microsoft Word and Office Remote Code Execution Vulnerability (MS14-081) Severity: Category II - VMSKEY: V0057701 |
2014-A-0179 | Microsoft Input Method Editor (IME) Privilege Escalation Vulnerability Severity: Category I - VMSKEY: V0057395 |
2014-B-0058 | Multiple Vulnerabilities in Microsoft Office Severity: Category II - VMSKEY: V0050431 |
2014-B-0057 | Microsoft Common Control Security Feature Bypass Vulnerability Severity: Category II - VMSKEY: V0050451 |
2014-A-0049 | Multiple Vulnerabilities in Microsoft Office Severity: Category II - VMSKEY: V0048675 |
2013-A-0225 | Microsoft GDI Remote Code Execution Vulnerability Severity: Category II - VMSKEY: V0042593 |
2013-B-0134 | Microsoft Office Information Disclosure Vulnerability Severity: Category II - VMSKEY: V0042589 |
2013-B-0135 | Microsoft Office Security Bypass Vulnerability Severity: Category II - VMSKEY: V0042585 |
2013-B-0126 | Multiple Vulnerabilities in Microsoft Office Severity: Category II - VMSKEY: V0042306 |
2013-B-0114 | Multiple Vulnerabilities in Microsoft Office Excel Severity: Category II - VMSKEY: V0040757 |
2013-B-0116 | Microsoft SharePoint Remote Code Execution Vulnerabilities Severity: Category II - VMSKEY: V0040765 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Office Outlook Saved Search download attempt RuleID : 9847 - Type : FILE-OFFICE - Revision : 14 |
2014-01-10 | Microsoft Office Outlook VEVENT overflow attempt RuleID : 9841 - Type : SERVER-MAIL - Revision : 18 |
2014-01-10 | Microsoft Office Publisher file magic detected RuleID : 8478 - Type : FILE-IDENTIFY - Revision : 19 |
2014-01-10 | Microsoft Office GIF image descriptor memory corruption attempt RuleID : 8414 - Type : FILE-OFFICE - Revision : 16 |
2014-01-10 | pub file download RuleID : 8350 - Type : WEB-CLIENT - Revision : 4 |
2014-01-10 | Microsoft Forms 2.0 ComboBox ActiveX CLSID unicode access RuleID : 7955 - Type : WEB-ACTIVEX - Revision : 7 |
2014-01-10 | Microsoft Forms 2.0 ComboBox ActiveX clsid access RuleID : 7954 - Type : BROWSER-PLUGINS - Revision : 12 |
2014-01-10 | Microsoft Office Data Source Control 10.0 ActiveX clsid unicode access RuleID : 7877 - Type : WEB-ACTIVEX - Revision : 10 |
2014-01-10 | Microsoft Office Data Source Control 10.0 ActiveX clsid access RuleID : 7876 - Type : BROWSER-PLUGINS - Revision : 18 |
2014-01-10 | Microsoft Office Spreadsheet 10.0 ActiveX clsid unicode access RuleID : 7873 - Type : WEB-ACTIVEX - Revision : 9 |
2014-01-10 | Microsoft Office Spreadsheet 10.0 ActiveX clsid access RuleID : 7872 - Type : BROWSER-PLUGINS - Revision : 17 |
2014-01-10 | Microsoft Office Data Source Control 9.0 ActiveX clsid unicode access RuleID : 7871 - Type : WEB-ACTIVEX - Revision : 11 |
2014-01-10 | Microsoft Office Data Source Control 9.0 ActiveX clsid access RuleID : 7870 - Type : BROWSER-PLUGINS - Revision : 16 |
2014-01-10 | Microsoft Office Word information string overflow attempt RuleID : 7203 - Type : FILE-OFFICE - Revision : 18 |
2014-01-10 | Microsoft Office Word document summary information string overflow attempt RuleID : 7202 - Type : FILE-OFFICE - Revision : 16 |
2014-01-10 | Microsoft Office Word summary information null string overflow attempt RuleID : 7201 - Type : FILE-OFFICE - Revision : 11 |
2014-01-10 | Microsoft Office Word document summary information null string overflow attempt RuleID : 7200 - Type : FILE-OFFICE - Revision : 11 |
2014-01-10 | Microsoft Office Excel MSO.DLL malformed string parsing multi byte buffer ove... RuleID : 7198 - Type : FILE-OFFICE - Revision : 10 |
2014-01-10 | Microsoft Office Excel MSO.DLL malformed string parsing single byte buffer ov... RuleID : 7197 - Type : FILE-OFFICE - Revision : 17 |
2014-01-10 | Microsoft Office Excel url unicode overflow attempt RuleID : 7002 - Type : FILE-OFFICE - Revision : 20 |
2014-01-10 | Microsoft Multiple Products malformed PNG detected tEXt overflow attempt RuleID : 6700 - Type : FILE-IMAGE - Revision : 20 |
2020-12-01 | Microsoft Office Outlook email parsing remote code execution attempt RuleID : 56157 - Type : FILE-OFFICE - Revision : 1 |
2020-12-01 | Microsoft Office Outlook email parsing remote code execution attempt RuleID : 56156 - Type : FILE-OFFICE - Revision : 1 |
2020-09-02 | Microsoft Office Equation Editor stack buffer overflow attempt RuleID : 54621 - Type : FILE-OFFICE - Revision : 1 |
2020-09-02 | Microsoft Office Equation Editor stack buffer overflow attempt RuleID : 54620 - Type : FILE-OFFICE - Revision : 1 |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2018-12-13 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_dec_office.nasl - Type: ACT_GATHER_INFO |
2018-11-14 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_nov_office.nasl - Type: ACT_GATHER_INFO |
2018-10-22 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_oct_office.nasl - Type: ACT_GATHER_INFO |
2018-09-11 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_sep_office.nasl - Type: ACT_GATHER_INFO |
2018-08-14 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_aug_office.nasl - Type: ACT_GATHER_INFO |
2018-07-10 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_jul_office.nasl - Type: ACT_GATHER_INFO |
2018-05-21 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_may_office.nasl - Type: ACT_GATHER_INFO |
2018-03-13 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_mar_office.nasl - Type: ACT_GATHER_INFO |
2018-01-19 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_jan_office.nasl - Type: ACT_GATHER_INFO |
2017-12-12 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macosx_ms17_dec_office.nasl - Type: ACT_GATHER_INFO |
2017-12-12 | Name: The Microsoft Office Products are missing a security update. File: smb_nt_ms17_dec_office.nasl - Type: ACT_GATHER_INFO |
2017-11-14 | Name: The Microsoft Office Products are affected by multiple vulnerabilities. File: smb_nt_ms17_nov_office.nasl - Type: ACT_GATHER_INFO |
2017-11-14 | Name: The Microsoft Office Products are affected by multiple vulnerabilities. File: smb_nt_ms17_nov_office_compatibility.nasl - Type: ACT_GATHER_INFO |
2017-11-14 | Name: The Microsoft Word Products are missing a security update. File: smb_nt_ms17_nov_word.nasl - Type: ACT_GATHER_INFO |
2017-11-03 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_sep_4038781.nasl - Type: ACT_GATHER_INFO |
2017-10-20 | Name: The remote Windows host is affected by an information disclosure vulnerability. File: smb_nt_ms17_apr_4014793.nasl - Type: ACT_GATHER_INFO |
2017-10-11 | Name: The Microsoft Office Products are affected by multiple vulnerabilities. File: smb_nt_ms17_oct_office.nasl - Type: ACT_GATHER_INFO |
2017-10-11 | Name: The Microsoft Sharepoint Server installation on the remote host is affected b... File: smb_nt_ms17_oct_office_sharepoint.nasl - Type: ACT_GATHER_INFO |
2017-10-11 | Name: An application installed on the remote Windows host is affected by multiple r... File: smb_nt_ms17_oct_office_web.nasl - Type: ACT_GATHER_INFO |
2017-10-10 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macosx_ms17_oct_office.nasl - Type: ACT_GATHER_INFO |
2017-10-10 | Name: Microsoft Office Compatibility Pack SP3 is affected by a remote code executio... File: smb_nt_ms17_oct_office_compatibility.nasl - Type: ACT_GATHER_INFO |
2017-10-10 | Name: The Microsoft Office Products are missing a security update. File: smb_nt_ms17_oct_word_viewer.nasl - Type: ACT_GATHER_INFO |
2017-09-12 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macosx_ms17_sep_office.nasl - Type: ACT_GATHER_INFO |
2017-09-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_sep_4038777.nasl - Type: ACT_GATHER_INFO |
2017-09-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_sep_4038782.nasl - Type: ACT_GATHER_INFO |