Download
| Alert*
|
oval:org.secpod.oval:def:10971
Microsoft Publisher 2003 SP3 is installed oval:org.secpod.oval:def:10980 The host is installed with Microsoft Publisher 2003 and is prone to invalid range check vulnerability. A flaw is present in the application, which fails to properly validate table range data while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arbitrar ... oval:org.secpod.oval:def:10975 The host is installed with Microsoft Publisher 2003 and is prone to integer overflow vulnerability. A flaw is present in the application, which attempts to determine the size for an allocation. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:10977 The host is installed with Microsoft Publisher 2003 and is prone to return value handling vulnerability. A flaw is present in the application, which ignores a returned method value while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:10978 The host is installed with Microsoft Publisher 2003 and is prone to buffer overflow vulnerability. A flaw is present in the application, which reads incorrect number of bytes into an array while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arbitrary ... oval:org.secpod.oval:def:3411 The host is installed with Microsoft Publisher 2003 or 2007 and is prone to Out-of-bounds Array Index Vulnerability. A flaw is present in the application which is caused by a specially crafted Publisher file. Successful exploitation allows remote attacker to install programs, view, change, or delete ... oval:org.secpod.oval:def:3412 The host is installed with Microsoft Publisher 2003 and is prone to Invalid Pointer Vulnerability. A flaw is present in the application which is caused by a specially crafted Publisher file. Successful exploitation allows remote attacker to install programs, view, change, or delete data, or create n ... oval:org.secpod.oval:def:3410 The host is installed with Microsoft Publisher 2003 or 2007 and is prone to Function Pointer Overwrite Vulnerability. A flaw is present in the application which is caused by a specially crafted Publisher file. Successful exploitation allows remote attacker to install programs, view, change, or delet ... oval:org.secpod.oval:def:3413 The host is installed with Microsoft Publisher 2003 or 2007 and is prone to Memory Corruption Vulnerability. A flaw is present in the application which is caused by a specially crafted Publisher file. Successful exploitation allows remote attacker to install programs, view, change, or delete data, o ... oval:org.secpod.oval:def:3414 The host is missing an important security update according to Microsoft security bulletin, MS11-091. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploita ... oval:org.secpod.oval:def:10981 The host is installed with Microsoft Publisher 2003 and is prone to incorrect NULL value handling vulnerability. A flaw is present in the application, which fails to properly handle NULL values while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arbit ... oval:org.secpod.oval:def:10982 The host is installed with Microsoft Publisher 2003 and is prone to signed integer vulnerability. A flaw is present in the application, which fails to expect a signed value when allocating memory while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arb ... oval:org.secpod.oval:def:17387 The host is missing an important security update according to Microsoft security bulletin, MS14-020. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle a crafted .pub file. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:17386 The host is installed with Microsoft Publisher 2003 SP3 or 2007 SP3 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle a crafted .pub file. Successful exploitation could allow attackers to execute arbitrary code or cause a denial of ser ... oval:org.secpod.oval:def:10970 The host is missing an important security update according to Microsoft bulletin, Ms13-042. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle certain vectors related to Publisher files. Successful exploitation allows atta ... oval:org.secpod.oval:def:10983 The host is installed with Microsoft Publisher 2003, 2007 or 2010 and is prone to pointer handling vulnerability. A flaw is present in the application, which fails to properly validate a pointer while handling specially crafted Publisher files. Successful exploitation allows attackers to execute arb ... oval:org.secpod.oval:def:10984 The host is installed with Microsoft Publisher 2003 and is prone to buffer overflow vulnerability. A flaw is present in the application, which allows a negative number to be passed into a byte array insertion while parsing specially crafted Publisher files. Successful exploitation allows attackers t ... oval:org.secpod.oval:def:10974 The host is installed with Microsoft Publisher 2003 and is prone to negative value allocation vulnerability. A flaw is present in the application, which fails to properly validate an array size while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arbit ... oval:org.secpod.oval:def:10976 The host is installed with Microsoft Publisher 2003 and is prone to corrupt interface pointer vulnerability. A flaw is present in the application, which incorrectly uses a corrupted pointer while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arbitrar ... oval:org.secpod.oval:def:10979 The host is installed with Microsoft Publisher 2003 and is prone to return value validation vulnerability. A flaw is present in the application, which fails to properly validate a returned value type while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute ... oval:org.secpod.oval:def:3187 The host is missing a critical security update according to Microsoft security bulletin, MS10-036. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office, which fails to validate COM objects to be instantiated. Successful exploitation allows an a ... oval:org.secpod.oval:def:1248 The host is missing a critical security update according to Microsoft security bulletin, MS10-103. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Publisher, which fails to handle crafted Publisher file that uses an old file format. Successful exploi ... oval:org.mitre.oval:def:7141 Buffer overflow in Microsoft Office Publisher 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Microsoft Office Publisher File Conversion TextBox Processing Buffer Overflow Vulnerability." oval:org.secpod.oval:def:2645 The host is missing a critical security update according to Microsoft security bulletin, MS08-027. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office Publisher, which fails handle a specially crafted Publisher file. Successful exploitation could ... oval:org.mitre.oval:def:12298 Array index error in pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher 97 file, aka "Memory Corruption Due To Invalid Index Into Array in Pubconv.dll Vulnerability." oval:org.secpod.oval:def:2037 The host is missing a critical security update according to Microsoft security bulletin, MS10-023. The update is required to fix buffer overflow vulnerability. A flaw is present in the Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploitation allow ... oval:org.mitre.oval:def:12187 Heap-based buffer overflow in pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3, 2003 SP3, 2007 SP2, and 2010 allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Heap Overrun in pubconv.dll Vulnerability." oval:org.mitre.oval:def:12381 Microsoft Publisher 2002 SP3, 2003 SP3, and 2010 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Publisher file, aka "Microsoft Publisher Memory Corruption Vulnerability." oval:org.mitre.oval:def:11555 pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3, 2003 SP3, and 2007 SP2 does not properly handle an unspecified size field in certain older file formats, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a ... |
