office vulnerabilities and exploits

NA
CVE-2019-9849

LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include remote...

NA
CVE-2019-9848

LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on various document events such as mouse-over, etc. LibreOffice is typically also bundled with LibreLogo, a programmable turtle vector graphics script, which can be manipulated into...

NA
CVE-2019-2561

Oracle Retail Xstore Office Multiple Remote Security Vulnerabilities...

NA
CVE-2018-2883

Oracle Retail Xstore Office Multiple Remote Security Vulnerabilities...

NA
CVE-2018-3111

Oracle Retail Xstore Office CVE-2018-3111 Remote Security Vulnerability...

NA
CVE-2019-1105

Outlook for Android Spoofing Vulnerability. The attacker who successfully exploited this vulnerability could then perform cross-site scripting attacks on the affected systems and run scripts in the security context of the current user....

9.3
CVSSv2
CVE-2019-1118

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122,...

9.3
CVSSv2
CVE-2019-1124

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121,...

MicrosoftWindows 10Windows Server 2016Windows Server 2019
9.3
CVSSv2
CVE-2019-1123

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121,...

MicrosoftWindows 10Windows Server 2016Windows Server 2019
9.3
CVSSv2
CVE-2019-1122

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121,...

MicrosoftWindows 10Windows Server 2016Windows Server 2019