Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
office system vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2006-2389
Unspecified vulnerability in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted malicious users to execute arbitrary code via an Office file with a malformed property that triggers memory corruption related to record length...
Microsoft Office Xp
Microsoft Office 2000
Microsoft Office 2003
1 EDB exploit
9
CVSSv2
CVE-2018-15610
A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated malicious user to read and delete arbitrary files on the system. Affected versions of Avaya IP Office include 9.1 up to and including 9.1 SP12, 10.0 up to and including 10.0 SP7, and 10.1 up ...
Avaya Ip Office 9.1
Avaya Ip Office 10.0
Avaya Ip Office 10.1
9.3
CVSSv2
CVE-2006-3864
Unspecified vulnerability in mso.dll in Microsoft Office 2000, XP, and 2003, and Microsoft PowerPoint 2000, XP, and 2003, allows remote user-assisted malicious users to execute arbitrary code via a malformed record in a (1) .DOC, (2) .PPT, or (3) .XLS file that triggers memory co...
Microsoft Office 2003
Microsoft Office Xp
Microsoft Project 2000
Microsoft Office 2000
Microsoft Project 2002
Microsoft Visio 2002
Microsoft Office 2004
Microsoft Office V.x
9.3
CVSSv2
CVE-2008-0109
Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Office Word Viewer 2003 allows remote malicious users to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file, which triggers length calculation errors and memory corruptio...
Microsoft Office 2000
Microsoft Office 2003
Microsoft Word
Microsoft Office Xp
6.8
CVSSv2
CVE-2020-16930
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current use...
Microsoft Office 2013
Microsoft Office 2016
Microsoft Office 2019
Microsoft 365 Apps -
7.5
CVSSv2
CVE-2002-0619
The Mail Merge Tool in Microsoft Word 2002 for Windows, when Microsoft Access is present on a system, allows remote malicious users to execute Visual Basic (VBA) scripts within a mail merge document that is saved in HTML format, aka a "Variant of MS00-071, Word Mail Merge Vu...
Microsoft Office Xp
Microsoft Office 2000
9.3
CVSSv2
CVE-2007-0035
Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, 2004 for Mac, and Works Suite 2004, 2005, and 2006 does not properly handle data in a certain array, which allows user-assisted remote malicious users to execute arbitrary code, aka the "Word Array Overflo...
Microsoft Works 2004
Microsoft Works 2005
Microsoft Office Xp
Microsoft Office 2003
Microsoft Office 2000
Microsoft Works 2006
Microsoft Office 2004
4.3
CVSSv2
CVE-2020-1229
A security feature bypass vulnerability exists in Microsoft Outlook when Office fails to enforce security settings configured on a system, aka 'Microsoft Outlook Security Feature Bypass Vulnerability'.
Microsoft 365 Apps -
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2016
Microsoft Office 2019
Microsoft Word 2010
Microsoft Word 2013
Microsoft Word 2016
2 Articles
5.1
CVSSv2
CVE-2006-0028
Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted malicious users to execute arbitrary code via a BIFF parsing format file containing malformed BOOLERR records that lead to memory corruption, p...
Microsoft Office 2000
Microsoft Office 2003
Microsoft Office 2004
Microsoft Excel 2004
Microsoft Excel X
Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Office V.x
Microsoft Office Xp
5.1
CVSSv2
CVE-2006-0029
Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted malicious users to execute arbitrary code via an Excel file with a malformed description, which leads to memory corruption.
Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Office 2004
Microsoft Office V.x
Microsoft Excel 2003
Microsoft Excel 2004
Microsoft Office Xp
Microsoft Office 2003
Microsoft Excel X
Microsoft Office 2000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »