Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
office vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3333
Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote malicious users to execute arbitrary code via crafted RTF data, aka &...
Microsoft Office Xp
Microsoft Open Xml File Format Converter
Microsoft Office 2008
Microsoft Office 2011
Microsoft Office 2010
Microsoft Office 2004
Microsoft Office 2003
Microsoft Office 2007
4 EDB exploits
8 Github repositories
12 Articles
7.8
CVSSv3
CVE-2017-8570
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0243.
Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2016
1 EDB exploit
13 Github repositories
16 Articles
7.8
CVSSv3
CVE-2016-7245
Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, and Office 2016 allow remote malicious users to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."
Microsoft Office 2010
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office 2013
NA
CVE-2006-1318
Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, Office 2004 for Mac, and Office X for Mac do not properly parse record lengths, which allows remote malicious users to execute arbitrary code via a malformed control in an Office document, aka "Microsoft Offi...
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2004
Microsoft Office X
7.8
CVSSv3
CVE-2017-8744
A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, and Microsoft Excel 2016 when they fail to properly handle object...
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2007
Microsoft Office 2016
NA
CVE-2006-3434
Unspecified vulnerability in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted malicious users to execute arbitrary code via a crafted string that triggers memory corruption.
Microsoft Office 2000
Microsoft Office 2003
Microsoft Office 2004
Microsoft Office V.x
NA
CVE-2008-3005
Array index vulnerability in Microsoft Office Excel 2000 SP3 and 2002 SP3, and Office 2004 and 2008 for Mac allows remote malicious users to execute arbitrary code via an Excel file with a crafted array index for a FORMAT record, aka the "Excel Index Array Vulnerability.&quo...
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2004
Microsoft Office 2008
NA
CVE-2014-2730
The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote malicious users to cause a denial of service (memory consumption and persistent application hang) via ...
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2011
Microsoft Office 2007
6.5
CVSSv3
CVE-2016-0141
The Visual Basic macros in Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016 export a certificate-store private key during a document-save operation, which allows malicious users to obtain sensitive information via unspecified vectors, aka "Microsoft Information Disclo...
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2007
Microsoft Office 2013
NA
CVE-2008-0103
Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote malicious users to execute arbitrary code via an Office document that contains a malformed object, related to a "memory handling error," aka &qu...
Microsoft Office 2003
Microsoft Office 2004
Microsoft Office Xp
Microsoft Office 2000
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »