Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
office vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2010-3335
Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allow remote malicious users to execute arbitrary code via a crafted Office document that triggers memory corrupti...
Microsoft Office Xp
Microsoft Office 2008
Microsoft Office 2011
Microsoft Open Xml File Format Converter
Microsoft Office 2010
Microsoft Office 2004
Microsoft Office 2003
Microsoft Office 2007
7.2
CVSSv2
CVE-2016-0057
Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016 does not properly sign an unspecified binary file, which allows local users to gain privileges via a Trojan horse file with a crafted signature, aka "Microsoft Office Security Feature Bypass Vulnerability."
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office 2013
Microsoft Office 2010
9.3
CVSSv2
CVE-2017-11882
Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1, and Microsoft Office 2016 allow an malicious user to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "...
Microsoft Office 2013
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2007
1 EDB exploit
60 Github repositories
50 Articles
9.3
CVSSv2
CVE-2016-7245
Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, and Office 2016 allow remote malicious users to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."
Microsoft Office 2010
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office 2013
9.3
CVSSv2
CVE-2017-8570
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0243.
Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2016
1 EDB exploit
13 Github repositories
16 Articles
5
CVSSv2
CVE-2014-2730
The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote malicious users to cause a denial of service (memory consumption and persistent application hang) via ...
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2011
Microsoft Office 2007
6.4
CVSSv2
CVE-2019-1109
A spoofing vulnerability exists when Microsoft Office Javascript does not check the validity of the web page making a request to Office documents.An attacker who successfully exploited this vulnerability could read or write information in Office documents.The security update addr...
Microsoft Office 365 -
Microsoft Office 2016
Microsoft Office 2013
Microsoft Office 2019
1 Article
9.3
CVSSv2
CVE-2006-3434
Unspecified vulnerability in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted malicious users to execute arbitrary code via a crafted string that triggers memory corruption.
Microsoft Office 2000
Microsoft Office 2003
Microsoft Office 2004
Microsoft Office V.x
9.3
CVSSv2
CVE-2008-0103
Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote malicious users to execute arbitrary code via an Office document that contains a malformed object, related to a "memory handling error," aka &qu...
Microsoft Office 2003
Microsoft Office 2004
Microsoft Office Xp
Microsoft Office 2000
9.3
CVSSv2
CVE-2008-0110
Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote malicious users to execute arbitrary code via a crafted mailto URI.
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2003
Microsoft Office 2007
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »