Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
publisher vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2010-2570
Heap-based buffer overflow in pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3, 2003 SP3, 2007 SP2, and 2010 allows remote malicious users to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Heap Overrun in p...
Microsoft Publisher 2007
Microsoft Publisher 2002
Microsoft Publisher 2003
Microsoft Publisher 2010
6.8
CVSSv2
CVE-2007-6534
Multiple unspecified vulnerabilities in Microsoft Office Publisher allow user-assisted remote malicious users to cause a denial of service (application crash) via a crafted PUB file, possibly involving wordart.
Microsoft Publisher 2000
Microsoft Publisher 2002
Microsoft Publisher 2003
Microsoft Publisher 2007
9.3
CVSSv2
CVE-2013-1328
Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote malicious users to execute arbitrary code via a crafted Publisher file that triggers incorrect pointer handling, aka "Publisher Pointer Handling Vulnerability."
Microsoft Publisher 2003
Microsoft Publisher 2007
Microsoft Publisher 2010
10
CVSSv2
CVE-2008-0102
Unspecified vulnerability in Microsoft Office Publisher 2000, 2002, and 2003 SP2 allows remote malicious users to execute arbitrary code via a crafted .pub file, related to invalid "memory values," aka "Publisher Invalid Memory Reference Vulnerability."
Microsoft Publisher 2002
Microsoft Publisher 2003
Microsoft Publisher 2000
9.3
CVSSv2
CVE-2010-2569
pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3, 2003 SP3, and 2007 SP2 does not properly handle an unspecified size field in certain older file formats, which allows remote malicious users to execute arbitrary code or cause a denial of service (heap...
Microsoft Publisher 2007
Microsoft Publisher 2002
Microsoft Publisher 2003
9.3
CVSSv2
CVE-2010-0479
Buffer overflow in Microsoft Office Publisher 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 allows remote malicious users to execute arbitrary code via a crafted Publisher file, aka "Microsoft Office Publisher File Conversion TextBox Processing Buffer Overflow Vulnerability."...
Microsoft Publisher 2002
Microsoft Publisher 2003
Microsoft Publisher 2007
9.3
CVSSv2
CVE-2010-3954
Microsoft Publisher 2002 SP3, 2003 SP3, and 2010 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Publisher file, aka "Microsoft Publisher Memory Corruption Vulnerability."
Microsoft Publisher 2003
Microsoft Publisher 2010
Microsoft Publisher 2002
9
CVSSv2
CVE-2021-2396
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite - XDO). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with networ...
Oracle Bi Publisher 5.5.0.0.0
Oracle Bi Publisher 11.1.1.9.0
Oracle Bi Publisher 12.2.1.3.0
Oracle Bi Publisher 12.2.1.4.0
9
CVSSv2
CVE-2021-2391
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Scheduler). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via ...
Oracle Bi Publisher 5.5.0.0.0
Oracle Bi Publisher 11.1.1.9.0
Oracle Bi Publisher 12.2.1.3.0
Oracle Bi Publisher 12.2.1.4.0
9
CVSSv2
CVE-2021-2392
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: BI Publisher Security). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network...
Oracle Bi Publisher 5.5.0.0.0
Oracle Bi Publisher 11.1.1.9.0
Oracle Bi Publisher 12.2.1.3.0
Oracle Bi Publisher 12.2.1.4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »