CVSS: 9.3EPSS: 58%CPEs: 6EXPL: 1CVE-2015-2470 – Microsoft Office 2007 - MSPTLS Heap Index Integer Underflow (MS15-081)
https://notcve.org/view.php?id=CVE-2015-2470
15 Aug 2015 — Integer underflow in Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office for Mac 2011, and Word Viewer allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Integer Underflow Vulnerability." Vulnerabilidad de desbordamiento inferior de entero en Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office para Mac 2011 y Word Viewer, permite a atacantes remotos ejecutar código arbitrario a través de un d... • https://www.exploit-db.com/exploits/37924 • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 1%CPEs: 36EXPL: 0CVE-2015-2423
https://notcve.org/view.php?id=CVE-2015-2423
15 Aug 2015 — Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Windows 10, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Visio 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Visio 2013 RT SP1, Word 2013 RT SP1, and Internet Explorer 7 through 11 al... • http://www.securitytracker.com/id/1033237 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 89%CPEs: 5EXPL: 1CVE-2015-2469 – Microsoft Office 2007 - 'wwlib.dll' Type Confusion (MS15-081)
https://notcve.org/view.php?id=CVE-2015-2469
15 Aug 2015 — Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, and Office for Mac 2011 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." Vulnerabilidad en Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2 y Office para Mac 2011, permite a atacantes remotos ejecutar código arbitrario a través de un documento manipulado, también conocida como 'Microsoft Office Memory Corruption Vulnerability.' • https://www.exploit-db.com/exploits/37910 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 82%CPEs: 13EXPL: 1CVE-2015-2468 – Microsoft Office 2007 - 'mso.dll' Arbitrary Free (MS15-081)
https://notcve.org/view.php?id=CVE-2015-2468
15 Aug 2015 — Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office for Mac 2011, Office for Mac 2016, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, Word Web Apps 2010 SP2, and Office Web Apps Server 2013 SP1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." Vulnerabilidad en Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Wor... • https://www.exploit-db.com/exploits/37912 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 40%CPEs: 7EXPL: 0CVE-2015-2379
https://notcve.org/view.php?id=CVE-2015-2379
14 Jul 2015 — Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office for Mac 2011, and Word Viewer allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office para Mac 2011, y Word Viewer permiten a atacantes remotos ejecutar código arbitrario o provocar una den... • http://www.securitytracker.com/id/1032899 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 68%CPEs: 7EXPL: 0CVE-2015-2380
https://notcve.org/view.php?id=CVE-2015-2380
14 Jul 2015 — Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, and Word 2013 RT SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, y Word 2013 RT SP1 permite a atacantes remotos la ejecución de código arbitrario o provocar denegación de servicio (corrupción de memoria) vía documento de Office... • http://www.securitytracker.com/id/1032899 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 19%CPEs: 8EXPL: 0CVE-2015-2424 – Microsoft PowerPoint Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2015-2424
14 Jul 2015 — Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013 SP1, Word 2013 SP1, and PowerPoint 2013 RT SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013 SP1, Word 2013 SP1 y PowerPoint 2013 RT SP1 permite a atacantes remotos ejecutar cód... • http://www.securitytracker.com/id/1032899 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 68%CPEs: 3EXPL: 0CVE-2015-1651 – Microsoft Office 2007 RTF XML SmartTags Use-After-Free
https://notcve.org/view.php?id=CVE-2015-1651
14 Apr 2015 — Use-after-free vulnerability in Microsoft Word 2007 SP3, Word Viewer, and Office Compatibility Pack SP3 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Component Use After Free Vulnerability." Vulnerabilidad de uso después de liberación en Microsoft Word 2007 SP3, Word Viewer, y Office Compatibility Pack SP3 permite a atacantes remotos ejecutar código arbitrario a través de un documento de Office manipulado, también conocido como 'vulnerabilidad del uso... • http://www.securitytracker.com/id/1032104 •
CVSS: 9.3EPSS: 91%CPEs: 11EXPL: 0CVE-2015-1649
https://notcve.org/view.php?id=CVE-2015-1649
14 Apr 2015 — Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps Server 2010 SP2 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Component Use After Free Vulnerability." Vulnerabilidad de uso después de liberación en Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Viewer, Office Compatibility Pack ... • http://www.securitytracker.com/id/1032104 •
CVSS: 9.3EPSS: 92%CPEs: 11EXPL: 0CVE-2015-1650 – Microsoft Word Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-1650
14 Apr 2015 — Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, and Office Web Apps Server 2010 SP2 and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Component Use After Free Vulnerability." Vulnerabilidad de uso después de liberación en Microsoft Word 2007 SP3, Office 2010 ... • http://www.securitytracker.com/id/1032104 •