VYPR

Office

by Microsoft

CVEs (1,071)

  • CVE-2006-5994Dec 6, 2006
    risk 0.02cvss epss 0.31

    Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word and Word Viewer 2003, Word 2004 and 2004 v. X for Mac, and Works 2004, 2005, and 2006 allows remote attackers to execute arbitrary code via a Word document with a malformed string that triggers memory…

  • CVE-2006-4693Oct 10, 2006
    risk 0.02cvss epss 0.22

    Unspecified vulnerability in Microsoft Word 2004 for Mac and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string in a Word file, a different issue than CVE-2006-3647 and CVE-2006-3651.

  • CVE-2006-3434Oct 10, 2006
    risk 0.02cvss epss 0.29

    Unspecified vulnerability in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string that triggers memory corruption.

  • CVE-2006-3651Oct 10, 2006
    risk 0.02cvss epss 0.31

    Unspecified vulnerability in Microsoft Word 2000, 2002, and Office 2003 allows remote user-assisted attackers to execute arbitrary code via a crafted mail merge file, a different vulnerability than CVE-2006-3647 and CVE-2006-4693.

  • CVE-2006-3647Oct 10, 2006
    risk 0.02cvss epss 0.26

    Integer overflow in Microsoft Word 2000, 2002, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string in a Word document, which overflows a 16-bit integer length value, aka "Memmove Code Execution," a different…

  • CVE-2006-3868Oct 10, 2006
    risk 0.02cvss epss 0.23

    Unspecified vulnerability in Microsoft Office XP and 2003 allows remote user-assisted attackers to execute arbitrary code via a malformed Smart Tag.

  • CVE-2006-0007Jul 11, 2006
    risk 0.02cvss epss 0.20

    Buffer overflow in GIFIMP32.FLT, as used in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via a crafted GIF image that triggers memory corruption when it is parsed.

  • CVE-2006-0004Feb 14, 2006
    risk 0.02cvss epss 0.31

    Microsoft PowerPoint 2000 in Office 2000 SP3 has an interaction with Internet Explorer that allows remote attackers to obtain sensitive information via a PowerPoint presentation that attempts to access objects in the Temporary Internet Files Folder (TIFF).

  • CVE-2004-0848Feb 8, 2005
    risk 0.02cvss epss 0.27

    Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames.

  • CVE-2004-0846Nov 3, 2004
    risk 0.02cvss epss 0.28

    Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not properly validated.

  • CVE-2000-0419May 11, 2000
    risk 0.02cvss epss 0.21

    The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability.

  • CVE-2024-43609Oct 8, 2024
    risk 0.01cvss epss 0.02

    Microsoft Office Spoofing Vulnerability

  • CVE-2024-43504Oct 8, 2024
    risk 0.01cvss epss 0.06

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2024-38021Jul 9, 2024
    risk 0.01cvss epss 0.04

    Microsoft Outlook Remote Code Execution Vulnerability

  • CVE-2015-6124Dec 9, 2015
    risk 0.01cvss epss 0.14

    Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

  • CVE-2015-6118Dec 9, 2015
    risk 0.01cvss epss 0.14

    Microsoft Office 2007 SP3 and Office 2010 SP2 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

  • CVE-2015-6107Dec 9, 2015
    risk 0.01cvss epss 0.18

    The Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Windows 10 Gold and 1511, Office 2007 SP3, Office 2010 SP2, Word Viewer, Skype for…

  • CVE-2015-6106Dec 9, 2015
    risk 0.01cvss epss 0.17

    The Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2, Office 2007 SP3, Office 2010 SP2, Word Viewer, Skype for Business 2016, Lync 2010, Lync 2013 SP1, and Live Meeting 2007 Console allows remote attackers to execute arbitrary code via a crafted…

  • CVE-2015-6092Nov 11, 2015
    risk 0.01cvss epss 0.15

    Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Office Compatibility Pack SP3, and Word Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption…

  • CVE-2015-6091Nov 11, 2015
    risk 0.01cvss epss 0.15

    Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, and Word Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

Page 41 of 54