Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft office 2007 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2015-1642
Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote malicious users to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."
Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
9.3
CVSSv2
CVE-2016-3318
Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allow remote malicious users to execute arbitrary code via a crafted file, aka "Graphics Component Memory Corruption Vulnerability."
Microsoft Office 2010
Microsoft Office 2007
Microsoft Office 2013
9.3
CVSSv2
CVE-2015-2545
Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows remote malicious users to execute arbitrary code via a crafted EPS image, aka "Microsoft Office Malformed EPS File Vulnerability."
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2007
1 Github repository
5 Articles
9.3
CVSSv2
CVE-2014-1756
Untrusted search path vulnerability in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013 Gold, SP1, RT, and RT SP1, when the Simplified Chinese Proofing Tool is enabled, allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstr...
Microsoft Office 2010
Microsoft Office 2007
Microsoft Office 2013
6.8
CVSSv2
CVE-2014-1809
The MSCOMCTL library in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013 Gold, SP1, RT, and RT SP1 makes it easier for remote malicious users to bypass the ASLR protection mechanism via a crafted web site, as exploited in the wild in May 2014, aka "MSCOMCTL ASLR Vulnera...
Microsoft Office 2013
Microsoft Office 2010
Microsoft Office 2007
9.3
CVSSv2
CVE-2011-1983
Use-after-free vulnerability in Microsoft Office 2007 SP2 and SP3, Office 2010 Gold and SP1, and Office for Mac 2011 allows remote malicious users to execute arbitrary code via a crafted Word document, aka "Word Use After Free Vulnerability."
Microsoft Office 2011
Microsoft Office 2007
Microsoft Office 2010
4.3
CVSSv2
CVE-2014-6362
Use-after-free vulnerability in Microsoft Office 2007 SP3, 2010 SP2, and 2013 Gold and SP1 allows remote malicious users to bypass the ASLR protection mechanism via a crafted document, aka "Microsoft Office Component Use After Free Vulnerability."
Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
9.3
CVSSv2
CVE-2018-0862
Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulne...
Microsoft Office 2010
Microsoft Office 2016
Microsoft Word 2016
Microsoft Office Compatibility Pack -
Microsoft Word 2007
Microsoft Word 2010
Microsoft Word 2013
Microsoft Office 2007
Microsoft Office 2013
9.3
CVSSv2
CVE-2018-0798
Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability".
Microsoft Office 2010
Microsoft Word 2013
Microsoft Word 2016
Microsoft Office 2016
Microsoft Office Compatibility Pack -
Microsoft Word 2007
Microsoft Office 2007
Microsoft Office 2013
Microsoft Word 2010
2 Github repositories
1 Article
9.3
CVSSv2
CVE-2018-0801
Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Remote Code Execution Vulnerability".
Microsoft Office Compatibility Pack -
Microsoft Word 2010
Microsoft Word 2013
Microsoft Word 2016
Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2016
Microsoft Word 2007
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »