CVSS: 9.3EPSS: 71%CPEs: 7EXPL: 1CVE-2008-0115 – Microsoft Excel - Code Execution (MS08-014)
https://notcve.org/view.php?id=CVE-2008-0115
11 Mar 2008 — Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office for Mac 2004 allows user-assisted remote attackers to execute arbitrary code via malformed formulas, aka "Excel Formula Parsing Vulnerability." Vulnerabilidad no especificada en Microsoft Excel 2000 SP3 hasta 2007, Viewer 2003, Pack de compatibilidad (Compatibility Pack), and Office para Mac 2004 permite a atacantes remotos asistidos por usuarios ejecutar código de su elección mediante formulas ma... • https://www.exploit-db.com/exploits/5287 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 70%CPEs: 26EXPL: 1CVE-2007-2223 – Microsoft Internet Explorer substringData Heap Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-2223
14 Aug 2007 — Microsoft XML Core Services (MSXML) 3.0 through 6.0 allows remote attackers to execute arbitrary code via the substringData method on a (1) TextNode or (2) XMLDOM object, which causes an integer overflow that leads to a buffer overflow. Microsoft XML Core Services (MSXML) versión 3.0 hasta 6.0 permite a los atacantes remotos ejecutar código arbitrario por medio del método substringData en un objeto (1) TextNode o (2) XMLDOM, lo que provoca un desbordamiento de enteros que conduce a un desbordamiento de búfe... • https://www.exploit-db.com/exploits/30493 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-190: Integer Overflow or Wraparound •
CVSS: 8.1EPSS: 13%CPEs: 1EXPL: 1CVE-2007-1911 – Microsoft Word 2007 - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-1911
10 Apr 2007 — Multiple unspecified vulnerabilities in Microsoft Word 2007 allow remote attackers to cause a denial of service (CPU consumption) via crafted documents, as demonstrated by (1) file798-1.doc and (2) file613-1.doc, possibly related to a buffer overflow. Múltiples vulnerabilidades no especificadas en Microsoft Word 2007 permite a atacantes remotos provocar una denegación de servicio (consumo de CPU) mediante documentos manipulados de forma manual, como ha sido demostrado por (1) file798-1.doc y (2) file613-1.d... • https://www.exploit-db.com/exploits/3690 •
CVSS: 7.8EPSS: 36%CPEs: 1EXPL: 2CVE-2007-1910 – Microsoft Word 2007 - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-1910
10 Apr 2007 — Buffer overflow in wwlib.dll in Microsoft Word 2007 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted document, as demonstrated by file789-1.doc. Desbordamiento de búfer en wwlib.dll en Microsoft Word 2007 permite a atacantes remotos provocar denegación de servicio (caida de aplicación) y posiblemente ejecutar código de su elección a través de documentos manipulados como se demostró con file789-1.doc. • https://www.exploit-db.com/exploits/3690 •