Microsoft

Office

1029 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 17.46%
  • Veröffentlicht 15.10.2014 10:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Microsoft Office 2007 SP3, Word 2007 SP3, Office 2010 SP1 and SP2, Word 2010 SP1 and SP2, Office for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP1 and SP2, and Word Web Apps 2010 Gold, SP1, and SP2 al...

  • EPSS 15.46%
  • Veröffentlicht 19.09.2014 10:55:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, Office 2004 for Mac, and Office X for Mac do not properly parse record lengths, which allows remote attackers to execute arbitrary code via a malformed control in an Office document, ...

  • EPSS 8.6%
  • Veröffentlicht 14.05.2014 11:13:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Untrusted search path vulnerability in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013 Gold, SP1, RT, and RT SP1, when the Simplified Chinese Proofing Tool is enabled, allows local users to gain privileges via a Trojan horse DLL in the current ...

  • EPSS 10.09%
  • Veröffentlicht 14.05.2014 11:13:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Microsoft Office 2013 Gold, SP1, RT, and RT SP1 allows remote attackers to obtain sensitive token information via a web site that sends a crafted response during opening of an Office document, aka "Token Reuse Vulnerability."

  • EPSS 10.12%
  • Veröffentlicht 14.05.2014 11:13:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The MSCOMCTL library in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013 Gold, SP1, RT, and RT SP1 makes it easier for remote attackers to bypass the ASLR protection mechanism via a crafted web site, as exploited in the wild in May 2014, aka "MS...

  • EPSS 11.54%
  • Veröffentlicht 05.04.2014 14:55:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory consumption and persisten...

Warnung
  • EPSS 77.46%
  • Veröffentlicht 25.03.2014 13:24:01
  • Zuletzt bearbeitet 21.04.2026 19:04:04

Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Word Viewer; Office Compatibility Pack SP3; Office for Mac 2011; Word Automation Services on SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Of...

  • EPSS 12.77%
  • Veröffentlicht 11.12.2013 00:55:04
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft Office 2013 and 2013 RT allows remote attackers to discover authentication tokens via a crafted response to a file-open request for an Office file on a web site, as exploited in the wild in 2013, aka "Token Hijacking Vulnerability."

  • EPSS 9.93%
  • Veröffentlicht 11.12.2013 00:55:04
  • Zuletzt bearbeitet 29.04.2026 01:13:23

hxds.dll in Microsoft Office 2007 SP3 and 2010 SP1 and SP2 does not implement the ASLR protection mechanism, which makes it easier for remote attackers to execute arbitrary code via a crafted COM component on a web site that is visited with Internet ...

  • EPSS 18.68%
  • Veröffentlicht 13.11.2013 00:55:02
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft Office 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) file, aka "WPD File Format Memory Corruption Vulnerability."