Page 21 of 109 results (0.006 seconds)

CVSS: 7.5EPSS: 3%CPEs: 7EXPL: 0

The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing attackers to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation". • http://www.iss.net/security_center/static/9422.php http://www.securityfocus.com/bid/5110 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-032 •

CVSS: 7.5EPSS: 4%CPEs: 15EXPL: 0

Buffer overflow in various Microsoft applications for Macintosh allows remote attackers to cause a denial of service (crash) or execute arbitrary code by invoking the file:// directive with a large number of / characters, which affects Internet Explorer 5.1, Outlook Express 5.0 through 5.0.2, Entourage v. X and 2001, PowerPoint v. X, 2001, and 98, and Excel v. X and 2001 for Macintosh. Desbordamiento de buffer en varias aplicaciones de Microsoft para Macintosht permite a atacantes remotos causar una denegación de servicio (caída) o ejecutar código arbitrario invocando la directiva file:// con un número grande de caracteres /. • http://marc.info/?l=bugtraq&m=101897994314015&w=2 http://www.iss.net/security_center/static/8850.php http://www.osvdb.org/5357 http://www.securityfocus.com/bid/4517 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-019 •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

Vulnerability in (1) Microsoft Excel 2002 and earlier and (2) Microsoft PowerPoint 2002 and earlier allows attackers to bypass macro restrictions and execute arbitrary commands by modifying the data stream in the document. • http://online.securityfocus.com/archive/1/218802 http://www.cert.org/advisories/CA-2001-28.html http://www.kb.cert.org/vuls/id/287067 http://www.securityfocus.com/bid/3402 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-050 https://exchange.xforce.ibmcloud.com/vulnerabilities/7223 •

CVSS: 5.1EPSS: 0%CPEs: 3EXPL: 0

Buffer overflow in the HTML interpreter in Microsoft Office 2000 allows an attacker to execute arbitrary commands via a long embedded object tag, aka the "Microsoft Office HTML Object Tag" vulnerability. • http://www.securityfocus.com/bid/1561 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-056 •

CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0

Microsoft Excel 97 and 2000 allows an attacker to execute arbitrary commands by specifying a malicious .dll using the Register.ID function, aka the "Excel REGISTER.ID Function" vulnerability. • http://www.securityfocus.com/bid/1451 http://www.securityfocus.com/templates/archive.pike?list=1&msg=396B3F8F.9244D290%40nat.bg https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-051 https://exchange.xforce.ibmcloud.com/vulnerabilities/5016 •