Download
| Alert*
oval:org.secpod.oval:def:10973
Microsoft Publisher 2010 SP1 is installed oval:org.secpod.oval:def:42103 The host is missing an important security update KB3141537 oval:org.secpod.oval:def:42047 A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the f ... oval:org.secpod.oval:def:46035 An elevation of privilege vulnerability exists when Microsoft Publisher fails to utilize features that lock down the Local Machine zone when instantiating OLE objects. An attacker who successfully exploited the vulnerability could force arbitrary code to be executed in the Local Machine zone. To exp ... oval:org.secpod.oval:def:46056 The host is missing an important security update for KB4011186 oval:org.secpod.oval:def:10970 The host is missing an important security update according to Microsoft bulletin, Ms13-042. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle certain vectors related to Publisher files. Successful exploitation allows atta ... oval:org.secpod.oval:def:10983 The host is installed with Microsoft Publisher 2003, 2007 or 2010 and is prone to pointer handling vulnerability. A flaw is present in the application, which fails to properly validate a pointer while handling specially crafted Publisher files. Successful exploitation allows attackers to execute arb ... oval:org.secpod.oval:def:1248 The host is missing a critical security update according to Microsoft security bulletin, MS10-103. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Publisher, which fails to handle crafted Publisher file that uses an old file format. Successful exploi ... oval:org.secpod.oval:def:38346 The host is installed with Microsoft Publisher 2010 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle objects in memory. Successful exploitation could allow attackers to run arbitrary code in the context of the current user. oval:org.secpod.oval:def:31370 Microsoft Publisher 2010 Service Pack 2 is installed. oval:org.mitre.oval:def:12187 Heap-based buffer overflow in pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3, 2003 SP3, 2007 SP2, and 2010 allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Heap Overrun in pubconv.dll Vulnerability." oval:org.mitre.oval:def:12191 The application Microsoft Publisher 2010 is installed. oval:org.mitre.oval:def:12381 Microsoft Publisher 2002 SP3, 2003 SP3, and 2010 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Publisher file, aka "Microsoft Publisher Memory Corruption Vulnerability." oval:org.secpod.oval:def:62573 The host is missing an important security update for KB4032216 oval:org.secpod.oval:def:38336 The host is missing a critical security update according to Microsoft security bulletin, MS16-148. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fails to handle a specially crafted Microsoft Office file. Successful exploitation could allow a ... oval:org.secpod.oval:def:31365 The host is missing an important security update according to Microsoft security bulletin, MS15-116. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle specially crafted Microsoft Office file. Successful explo ... oval:org.secpod.oval:def:31390 The host is installed with Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publisher 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2007 IME (Japanese) SP3, Access 2010 SP2, Excel 2010 SP2, InfoPath 2010 SP2, OneNote 2010 SP2, P ... oval:org.secpod.oval:def:62492 A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the syst ... |