Microsoft

Frontpage

23 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2013-3137

  • EPSS 14.35%
  • Published 11.09.2013 14:03:48
  • Last modified 11.04.2025 00:51:21

Microsoft FrontPage 2003 SP3 does not properly parse DTDs, which allows remote attackers to obtain sensitive information via crafted XML data in a FrontPage document, aka "XML Disclosure Vulnerability."

7.5

CVE-2008-3068

  • EPSS 12.63%
  • Published 07.07.2008 23:41:00
  • Last modified 09.04.2025 00:30:58

Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by using an arbitrary URL from a certificate embedded in a (1) S/MIME e-mail message or (2) si...

6.4

CVE-2007-3109

  • EPSS 16.88%
  • Published 07.06.2007 21:30:00
  • Last modified 09.04.2025 00:30:58

The CERN Image Map Dispatcher (htimage.exe) in Microsoft FrontPage allows remote attackers to determine the existence, and possibly partial contents, of arbitrary files under the web root via a relative pathname in the PATH_INFO.

9.3

CVE-2007-0671

Warning
  • EPSS 68.36%
  • Published 03.02.2007 01:28:00
  • Last modified 13.08.2025 01:00:01

Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in tar...

9.3

CVE-2006-3877

  • EPSS 36.78%
  • Published 10.10.2006 22:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted file," a different vulnerabil...

5

CVE-2005-2143

Exploit
  • EPSS 9.79%
  • Published 05.07.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Microsoft Front Page allows attackers to cause a denial of service (crash) via a crafted style tag in a web page.

5

CVE-2004-2179

Exploit
  • EPSS 11.79%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

asycpict.dll, as used in Microsoft products such as Front Page 97 and 98, allows remote attackers to cause a denial of service (hang) via a JPEG image with maximum height and width values.

7.5

CVE-2004-0573

  • EPSS 40.53%
  • Published 28.09.2004 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the converter for Microsoft WordPerfect 5.x on Office 2000, Office XP, Office 2003, and Works Suites 2001 through 2004 allows remote attackers to execute arbitrary code via a malicious document or website.

9.3

CVE-2004-0200

  • EPSS 76.69%
  • Published 28.09.2004 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to...

5

CVE-1999-0681

Exploit
  • EPSS 11.04%
  • Published 12.03.2001 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 3.0.2.926 on Windows 95, and possibly other versions, allows remote attackers to cause a denial of service via a long URL.