Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
office vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2010-3333
Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote malicious users to execute arbitrary code via crafted RTF data, aka &...
Microsoft Office Xp
Microsoft Open Xml File Format Converter
Microsoft Office 2008
Microsoft Office 2011
Microsoft Office 2010
Microsoft Office 2004
Microsoft Office 2003
Microsoft Office 2007
4 EDB exploits
8 Github repositories
12 Articles
9.3
CVSSv2
CVE-2008-0110
Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote malicious users to execute arbitrary code via a crafted mailto URI.
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2003
Microsoft Office 2007
9.3
CVSSv2
CVE-2008-0118
Unspecified vulnerability in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, Excel Viewer 2003 up to SP3, and Office 2004 for Mac allows user-assisted remote malicious users to execute arbitrary code via a crafted Office document that triggers memory corruption from an "allocat...
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2003
Microsoft Office 2004
2 EDB exploits
9.3
CVSSv2
CVE-2006-1318
Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, Office 2004 for Mac, and Office X for Mac do not properly parse record lengths, which allows remote malicious users to execute arbitrary code via a malformed control in an Office document, aka "Microsoft Offi...
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2004
Microsoft Office X
9.3
CVSSv2
CVE-2008-3005
Array index vulnerability in Microsoft Office Excel 2000 SP3 and 2002 SP3, and Office 2004 and 2008 for Mac allows remote malicious users to execute arbitrary code via an Excel file with a crafted array index for a FORMAT record, aka the "Excel Index Array Vulnerability.&quo...
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2004
Microsoft Office 2008
6.4
CVSSv2
CVE-2019-1109
A spoofing vulnerability exists when Microsoft Office Javascript does not check the validity of the web page making a request to Office documents.An attacker who successfully exploited this vulnerability could read or write information in Office documents.The security update addr...
Microsoft Office 365 -
Microsoft Office 2016
Microsoft Office 2013
Microsoft Office 2019
1 Article
5
CVSSv2
CVE-2014-2730
The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote malicious users to cause a denial of service (memory consumption and persistent application hang) via ...
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2011
Microsoft Office 2007
9.3
CVSSv2
CVE-2016-7245
Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, and Office 2016 allow remote malicious users to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."
Microsoft Office 2010
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office 2013
7.2
CVSSv2
CVE-2016-0057
Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016 does not properly sign an unspecified binary file, which allows local users to gain privileges via a Trojan horse file with a crafted signature, aka "Microsoft Office Security Feature Bypass Vulnerability."
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office 2013
Microsoft Office 2010
9.3
CVSSv2
CVE-2008-0103
Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote malicious users to execute arbitrary code via an Office document that contains a malformed object, related to a "memory handling error," aka &qu...
Microsoft Office 2003
Microsoft Office 2004
Microsoft Office Xp
Microsoft Office 2000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »