Microsoft Vulnerabilities and Situations for 2010 in sgpkg-ips-420-4219
Vulnerabilities
MS10-105 Microsoft-Office-FlashPix-Converter-Buffer-Overflow-CVE-2010-3951
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-363-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_SS-Microsoft-Office-FlashPix-Converter-Buffer-Overflow-CVE-2010-3951
|
||||
| Situation |
File-OLE_Microsoft-Office-FlashPix-Converter-Buffer-Overflow-CVE-2010-3951
|
||||
| References: |
|
MS10-105 Microsoft-Office-Pict-Image-Converter-Integer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-384-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2003; Microsoft Office Converter Pack | ||||
| Type: | Integer Overflow | ||||
| Description: | A buffer overflow vulnerability exists in Microsoft Office. The vulnerability is due to the way Office allocates a buffer size when handling PICT image files. An attacker can leverage this vulnerability by enticing a target user to open a malicious file. Successful exploitation would allow an attacker to execute arbitrary code in the security context of the logged in user. An unsuccessful attack could cause an abnormal termination of the affected product. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Pict-Image-Converter-Integer-Overflow
|
||||
| Situation |
File-Binary_Microsoft-Office-Pict-Image-Converter-Integer-Overflow
|
||||
| References: |
|
MS10-105 Microsoft-Office-TIFF-Converter-Heap-Overflow-CVE-2010-3947
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-363-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2003; Microsoft Office 2007; Microsoft Office 2010 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_SS-Microsoft-Office-TIFF-Converter-Heap-Overflow-CVE-2010-3947
|
||||
| Situation |
File-Binary_Microsoft-Office-TIFF-Converter-Heap-Overflow-CVE-2010-3947
|
||||
| References: |
|
MS10-104 Microsoft-Sharepoint-Malformed-Request-Code-Execution-CVE-2010-3964
| About this vulnerability: | A vulnerability in Microsoft Sharepoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-363-4219 | ||||
| Last changed: | sgpkg-ips-418-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Sharepoint | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Sharepoint. | ||||
| Situation |
HTTP_CS-Microsoft-Sharepoint-Malformed-Request-Code-Execution-CVE-2010-3964
|
||||
| Situation |
Generic_CS-Microsoft-Sharepoint-Malformed-Request-Code-Execution-CVE-2010-3964
|
||||
| References: |
|
MS10-103 Microsoft-Publisher-Array-Indexing-Memory-Corruption-CVE-2010-3955
| About this vulnerability: | A vulnerability in Microsoft Publisher | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-364-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Publisher 2002 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Publisher. | ||||
| Situation |
HTTP_SS-Microsoft-Publisher-Array-Indexing-Memory-Corruption-CVE-2010-3955
|
||||
| Situation |
File-OLE_Microsoft-Publisher-Array-Indexing-Memory-Corruption-CVE-2010-3955
|
||||
| References: |
|
MS10-103 Microsoft-Publisher-Size-Value-Heap-Corruption-CVE-2010-2569
| About this vulnerability: | A vulnerability in Microsoft Publisher | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-363-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Publisher 2002; Microsoft Publisher 2007 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Publisher. | ||||
| Situation |
HTTP_SS-Microsoft-Publisher-Size-Value-Heap-Corruption-CVE-2010-2569
|
||||
| Situation |
File-OLE_Microsoft-Publisher-Size-Value-Heap-Corruption-CVE-2010-2569
|
||||
| References: |
|
MS10-101 Microsoft-Netlogon-RPC-Null-Deference-Denial-Of-Service-CVE-2010-2742
| About this vulnerability: | A vulnerability in Microsoft Netlogon RPC service | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-362-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Netlogon service. | ||||
| Situation |
MSRPC-TCP_CPS-Microsoft-Netlogon-RPC-Null-Deference-Denial-Of-Service
|
||||
| References: |
|
MS10-097 Microsoft-Internet-Connection-Wizard-Insecure-Loading-CVE-2010-3144
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows XP; Windows 2003 | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Windows. | ||||
| Situation |
HTTP_CSU-Microsoft-Internet-Connection-Wizard-Insecure-Loading-CVE-2010-3144
|
||||
| References: |
|
MS10-096 Microsoft-Windows-Address-Book-Insecure-Library-Loading-CVE-2010-3147
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 7; Windows 2008; Windows Vista; Windows 2008 | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Windows. | ||||
| Situation |
HTTP_CSU-Microsoft-Windows-Address-Book-Insecure-Library-Loading-CVE-2010-3147
|
||||
| References: |
|
MS10-095 Microsoft-Windows-BranchCache-Insecure-Library-Loading-CVE-2010-3966
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 7; Windows 2008 | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Windows. | ||||
| Situation |
HTTP_CSU-Microsoft-Windows-BranchCache-Insecure-Library-Loading-CVE-2010-3966
|
||||
| References: |
|
MS10-094 Microsoft-Windows-Media-Encoder-Insecure-Library-Loading-CVE-2010-3965
| About this vulnerability: | A vulnerability in Microsoft Windows Media Encoder | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows Vista; Windows XP; Windows 2008 | ||||
| Software: | Microsoft Windows Media Encoder | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Windows Media Encoder. | ||||
| Situation |
HTTP_CSU-Microsoft-Windows-Media-Encoder-Insecure-Library-Loading-CVE-2010-3965
|
||||
| References: |
|
MS10-093 Microsoft-Windows-Movie-Maker-Insecure-Library-Loading-CVE-2010-3967
| About this vulnerability: | A vulnerability in Microsoft Movie Maker | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows Vista | ||||
| Software: | Microsoft Windows Movie Maker | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Movie Maker. | ||||
| Situation |
HTTP_CSU-Microsoft-Windows-Movie-Maker-Insecure-Library-Loading-CVE-2010-3967
|
||||
| References: |
|
MS10-090 Microsoft-Internet-Explorer-HTML-Element-Memory-Corruption-CVE-2010-3345
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 8.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-HTML-Element-Memory-Corruption-CVE-2010-3345
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-HTML-Element-CVE-2010-3345
|
||||
| References: |
|
MS10-090 Microsoft-Internet-Explorer-HTML-Object-Memory-Corruption-CVE-2010-3340
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-HTML-Object-Memory-Corruption-CVE-2010-3340
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-HTML-Object-CVE-2010-3340
|
||||
| References: |
|
MS10-090 Microsoft-Internet-Explorer-HTML-Object-Memory-Corruption-CVE-2010-3343
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-HTML-Object-Memory-Corruption-CVE-2010-3343
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-HTML-Object-CVE-2010-3343
|
||||
| References: |
|
MS10-090 Microsoft-Internet-Explorer-HTML-Time-Element-Memory-Corruption-CVE-2010-3346
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-362-4219 | ||||
| Last changed: | sgpkg-ips-420-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 8.0; Internet Explorer 7.0; Internet Explorer 6.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-HTML-Time-Element-Memory-Corruption
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-HTML-Time-Element-CVE-2010-3346-2
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-HTML-Time-Element-CVE-2010-3346
|
||||
| References: |
|
MS10-090 Microsoft-Internet-Explorer-Use-After-Free-CVE-2010-3962
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-354-4219 | ||||
| Last changed: | sgpkg-ips-408-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Use-After-Free-CVE-2010-3962-2
|
||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Use-After-Free-CVE-2010-3962
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Use-After-Free-CVE-2010-3962-2
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Use-After-Free-CVE-2010-3962
|
||||
| References: |
|
MS10-088 Microsoft-Office-PowerPoint-Animation-Code-Execution-CVE-2010-2573
| About this vulnerability: | Code execution vulnerability in Microsoft PowerPoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-353-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft PowerPoint | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft PowerPoint. By persuading a target user to open a malicious Microsoft PowerPoint file with a vulnerable version of the affected product, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-PowerPoint-Animation-Code-Execution-CVE-2010-2573
|
||||
| Situation |
HTTP_SS-Microsoft-Office-PowerPoint-Animation-Code-Execution-CVE-2010-2573
|
||||
| Situation |
File-OLE_Microsoft-Office-PowerPoint-Animation-Code-Execution-CVE-2010-2573
|
||||
| References: |
|
MS10-088 Microsoft-Office-PowerPoint-FB1h-Parsing-BOF-CVE-2010-2572
| About this vulnerability: | Code execution vulnerability in Microsoft PowerPoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-353-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft PowerPoint | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft PowerPoint. By persuading a target user to open a malicious Microsoft PowerPoint file with a vulnerable version of the affected product, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-PowerPoint-FB1h-Parsing-BOF-CVE-2010-2572
|
||||
| Situation |
HTTP_SS-Microsoft-Office-PowerPoint-FB1h-Parsing-BOF-CVE-2010-2572
|
||||
| Situation |
File-OLE_Microsoft-Office-PowerPoint-FB1h-Parsing-BOF-CVE-2010-2572
|
||||
| References: |
|
MS10-087 Microsoft-Office-Art-Drawing-Records-CVE-2010-3334
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-353-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2003; Microsoft Office 2007; Microsoft Office 2010; Microsoft Office 2004; Microsoft Office 2008 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Art-Drawing-Records-CVE-2010-3334
|
||||
| Situation |
File-OLE_Microsoft-Office-Art-Drawing-Records-CVE-2010-3334
|
||||
| References: |
|
MS10-087 Microsoft-Office-Drawing-Exception-Handling-CVE-2010-3335
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-353-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2003; Microsoft Office 2007; Microsoft Office 2010; Microsoft Office 2004; Microsoft Office 2008 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Drawing-Exception-Handling-CVE-2010-3335
|
||||
| Situation |
File-OLE_Microsoft-Office-Drawing-Exception-Handling-CVE-2010-3335
|
||||
| References: |
|
MS10-087 Microsoft-Office-Insecure-Library-Loading-CVE-2010-3337
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-353-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office 2007; Microsoft Office 2010 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_CS-Microsoft-Windows-DLL-Hijack-Vulnerability
|
||||
| References: |
|
MS10-087 Microsoft-Office-MSO-Large-SPID-Read-AV-CVE-2010-3336
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-353-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2004; Microsoft Office 2008 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_SS-Microsoft-Office-MSO-Large-SPID-Read-AV-CVE-2010-3336
|
||||
| Situation |
File-OLE_Microsoft-Office-MSO-Large-SPID-Read-AV-CVE-2010-3336
|
||||
| References: |
|
MS10-087 Microsoft-Office-RTF-Stack-Overflow-CVE-2010-3333
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-353-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2003; Microsoft Office 2007; Microsoft Office 2010; Microsoft Office 2004; Microsoft Office 2008 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_SS-Microsoft-Office-RTF-Stack-Overflow-CVE-2010-3333
|
||||
| Situation |
File-Binary_Microsoft-Office-RTF-Stack-Overflow-CVE-2010-3333
|
||||
| References: |
|
MS10-085 Microsoft-Schannel-CVE-2010-3229
| About this vulnerability: | A Microsoft Schannel vulnerability | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-347-4219 | ||||
| Last changed: | sgpkg-ips-367-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | A vulnerability exists in Microsoft Schannel. | ||||
| Situation |
HTTPS_CS-Schannel-CVE-2010-3229
|
||||
| References: |
|
MS10-082 Microsoft-WMP-CVE-2010-2745
| About this vulnerability: | A Windows Media Player vulnerability | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-346-4219 | ||||
| Last changed: | sgpkg-ips-408-4219 | ||||
| Platform: | Windows | ||||
| Software: | Windows Media Player | ||||
| Type: | Malfunction | ||||
| Description: | A vulnerability exists in Windows Media Player. | ||||
| Situation |
HTTP_SS-WMP-2-CVE-2010-2745
|
||||
| Situation |
HTTP_SS-WMP-1-CVE-2010-2745
|
||||
| Situation |
File-Text_Microsoft-Windows-Media-Player-2-CVE-2010-2745
|
||||
| Situation |
File-Text_Microsoft-Windows-Media-Player-1-CVE-2010-2745
|
||||
| References: |
|
MS10-080 Microsoft-Excel-Merge-Cell-Record-Pointer-CVE-2010-3237
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-348-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2002; Microsoft Excel 2004 for Mac | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-Merge-Cell-Record-Pointer-CVE-2010-3237
|
||||
| Situation |
File-OLE_Microsoft-Excel-Merge-Cell-Record-Pointer-CVE-2010-3237
|
||||
| References: |
|
MS10-080 Microsoft-Excel-Ptgextraarray-Parsing-Memory-Corruption
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-401-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel; Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | A code execution vulnerability exists in Microsoft Office Excel. The vulnerability is due to lack of validation on the PtgExtraArray data structure when parsing a crafted Excel file. This vulnerability may be exploited by remote attackers to execute arbitrary code on the target system by enticing a user to open a maliciously crafted file. In situations where code execution is successful the injected code will run within the security context of the currently logged in user. If code execution fails, the vulnerable application may terminate abnormally. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-Ptgextraarray-Parsing-Memory-Corruption
|
||||
| Situation |
File-OLE_Microsoft-Excel-Ptgextraarray-Parsing-Memory-Corruption
|
||||
| References: |
|
MS10-080 Microsoft-Excel-Real-Time-Data-Array-Record-CVE-2010-3240
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-348-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2002; Microsoft Excel 2007; Microsoft Excel Viewer | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-Real-Time-Data-Array-Record-CVE-2010-3240
|
||||
| Situation |
File-OLE_Microsoft-Excel-Real-Time-Data-Array-Record-CVE-2010-3240
|
||||
| References: |
|
MS10-080 Microsoft-Excel-Record-Parsing-Integer-Overflow-CVE-2010-3230
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-347-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2002 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-Record-Parsing-Integer-Overflow-CVE-2010-3230
|
||||
| Situation |
File-OLE_Microsoft-Excel-Record-Parsing-Integer-Overflow-CVE-2010-3230
|
||||
| References: |
|
MS10-078 Microsoft-Windows-OpenType-Font-Parsing-Heap-Overflow
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-401-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Buffer Overflow | ||||
| Description: | A heap buffer overflow vulnerability exists in Microsoft Windows Adobe Type Manager (ATM) library for OpenType Font parsing. The vulnerability is due to insufficient validation of a value while processing the Naming Table inside OpenType font. Remote attackers can exploit this vulnerability by enticing target users to view a maliciously crafted font in an application that utilizes the affected library, such as Windows FontViewer. Successful exploitation of this vulnerability would result in arbitrary code execution within the kernel. In case of an unsuccessful code injection attack, the affected system will crash, causing denial of service condition. | ||||
| Situation |
HTTP_SS-Microsoft-Windows-OpenType-Font-Parsing-Heap-Overflow
|
||||
| Situation |
File-Binary_Microsoft-Windows-OpenType-Font-Parsing-Heap-Overflow
|
||||
| References: |
|
MS10-075 Media-Player-Network-Sharing-Service-Code-Execution-CVE-2010-3225
| About this vulnerability: | A code execution vulnerability in Microsoft Windows Media Player | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-347-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft Windows Media Player. | ||||
| Situation |
Generic_CS-Media-Player-Network-Sharing-Service-Code-Execution-CVE-2010-3225
|
||||
| References: |
|
MS10-072 Microsoft-Internet-Explorer-Cross-Site-Scripting-CVE-2010-3243
| About this vulnerability: | A cross-site scripting vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-346-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 8.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a cross-site scripting vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Cross-Site-Scripting-CVE-2010-3243
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Cross-Site-Scripting-CVE-2010-3243
|
||||
| References: |
|
MS10-072 Microsoft-Internet-Explorer-Cross-Site-Scripting-CVE-2010-3324
| About this vulnerability: | A cross-site scripting vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-346-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 8.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a cross-site scripting vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Cross-Site-Scripting-CVE-2010-3324
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Cross-Site-Scripting-CVE-2010-3324
|
||||
| References: |
|
MS10-071 Microsoft-Internet-Explorer-Cross-Domain-Information-Disclosure-CVE-2010-3330
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-347-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Cross-Domain-Disclosure-CVE-2010-3330
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Cross-Domain-Disclosure-CVE-2010-3330
|
||||
| References: |
|
MS10-071 Microsoft-Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-3328
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-346-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Uninitialized-Memory-CVE-2010-3328
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Uninitialized-Memory-CVE-2010-3328
|
||||
| References: |
|
MS10-071 Microsoft-Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-3329
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-346-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-HtmlDlgHelper-ActiveX-Component-Usage
|
||||
| Situation |
File-Text_Microsoft-HtmlDlgHelper-ActiveX-Component-Usage
|
||||
| References: |
|
MS10-071 Microsoft-Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-3331
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-346-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Malfunction | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Scriptlet-ActiveX-Component-Usage
|
||||
| Situation |
File-Text_Microsoft-Scriptlet-ActiveX-Component-Usage
|
||||
| References: |
|
MS10-070 Microsoft-ASP.NET-Information-Disclosure-CVE-2010-3332
| About this vulnerability: | An information disclosure vulnerability in Microsoft ASP.NET | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-342-4219 | ||||
| Last changed: | sgpkg-ips-346-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft .NET Framework | ||||
| Type: | Malfunction | ||||
| Description: | There is an information disclosure vulnerability in Microsoft ASP.NET. | ||||
| Situation |
Analyzer_Microsoft-ASP.NET-Information-Disclosure-CVE-2010-3332
|
||||
| References: |
|
MS10-068 LDAP-LSASS-Heap-Overflow-CVE-2010-0820
| About this vulnerability: | LDAP LSASS Heap Overflow vulnerability | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-338-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Buffer Overflow | ||||
| Description: | Windows LSASS heap overflow vulnerability in LDAP handling, MS10-068. | ||||
| Situation |
LDAP_CS-LSASS-Heap-Overflow-CVE-2010-0820
|
||||
| References: |
|
MS10-067 Microsoft-WordPad-Text-Converter-CVE-2010-2563
| About this vulnerability: | A vulnerability in Microsoft WordPad | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-342-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows XP; Windows 2003 | ||||
| Software: | WordPad | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Internet Information Services (IIS). | ||||
| Situation |
HTTP_SS-Microsoft-WordPad-Text-Converter-CVE-2010-2563
|
||||
| Situation |
File-OLE_Microsoft-WordPad-Text-Converter-CVE-2010-2563
|
||||
| References: |
|
MS10-065 Microsoft-IIS-Repeated-Parameter-Request-CVE-2010-1899
| About this vulnerability: | A vulnerability in Microsoft IIS | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-338-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | IIS 5.1; IIS 6.0; IIS 7.0; IIS 7.5 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Internet Information Services (IIS). | ||||
| Situation |
HTTP_CRL-Microsoft-IIS-Repeated-Parameter-Request-DoS-CVE-2010-1899
|
||||
| References: |
|
MS10-065 Microsoft-IIS-Repeated-Parameter-Request-Denial-Of-Service
| About this vulnerability: | Microsoft IIS crashes when sent malicious POST request with too many name-value pairs | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-344-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | IIS | ||||
| Type: | Malfunction | ||||
| Description: | Microsoft IIS has a vulnerability which is due to stack exhaustion while processing HTTP request to ASP resources. A remote unauthenticated attacked can exploit this flaw by sending a POST request with too many name-value pairs. | ||||
| Situation |
HTTP_Microsoft-IIS-Repeated-Parameter-Request-Denial-Of-Service
|
||||
| References: |
|
MS10-064 Microsoft-Exchange-Outlook-Compressed-RTF-Parsing-Memory-Corruption
| About this vulnerability: | Maliciously crafted email could comproise vulnerable Outlook client | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-339-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Outlook | ||||
| Type: | Malfunction | ||||
| Description: | A vulnerability in compressed RTF parsing allows remote attacker to craft malicious emails that could contain automatically executed malcode when opened via Outlook | ||||
| Situation |
E-Mail_Compressed-TNEF-RTF-Memory-Corruption
|
||||
| Situation |
File-Binary_Microsoft-Outlook-Compressed-TNEF-RTF-Memory-Corruption
|
||||
| References: |
|
MS10-063 Microsoft-Products-Uniscribe-Font-Parsing-Engine-Memory-Corruption
| About this vulnerability: | A vulnerability in Microsoft Office | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-401-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | A code execution vulnerability exists in Microsoft Windows and Microsoft Office products. The vulnerability is due to improper input validation of a table in the TrueType font layout. This vulnerability may be exploited by remote attackers to execute arbitrary code on the target system by enticing a target user to open a maliciously crafted document. In situations where code execution is successful the injected code will run within the security context of the currently logged-on user. | ||||
| Situation |
HTTP_SS-Microsoft-Products-Uniscribe-Font-Parsing-Engine-Memory-Corruption
|
||||
| Situation |
File-Binary_Microsoft-Products-Uniscribe-Font-Parsing-Engine-Memory-Corruption
|
||||
| References: |
|
MS10-062 Windows-Media-Player-Remote-Code-Execution-CVE-2010-0818
| About this vulnerability: | A remote code execution vulnerability in Windows Media Player | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-340-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Windows Media Player | ||||
| Type: | Malfunction | ||||
| Description: | There is a remote code execution vulnerability in Windows Media Player. | ||||
| Situation |
E-Mail_BS-Windows-Media-Player-Remote-Code-Execution-CVE-2010-0818
|
||||
| Situation |
HTTP_SS-Windows-Media-Player-Remote-Code-Execution-CVE-2010-0818
|
||||
| Situation |
File-Binary_Windows-Media-Player-Remote-Code-Execution-CVE-2010-0818
|
||||
| References: |
|
MS10-061 Microsoft-Print-Service-Impersonation-CVE-2010-2729
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-338-4219 | ||||
| Last changed: | sgpkg-ips-338-4219 | ||||
| Platform: | Windows XP; Windows 2003; Windows Vista; Windows 2008; Windows 7 | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Windows Print Spooler service. | ||||
| Situation |
MSRPC-TCP_CPS-Microsoft-Print-Service-Impersonation-CVE-2010-2729
|
||||
| References: |
|
MS10-060 Microsoft-Silverlight-Pointer-Handling-Memory-Corruption
| About this vulnerability: | Microsoft Silverlight Pointer Handling Memory Corruption | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-331-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Generic | ||||
| Software: | Silverlight | ||||
| Type: | Malfunction | ||||
| Description: | A remote code execution vulnerability exists in Microsoft Silverlight. The vulnerability is due to a flaw in the way that Microsoft Silverlight handles pointers. Remote attackers can exploit this vulnerability by enticing target users to visit a malicious web page, potentially causing arbitrary code to be injected and executed on the target host. Successful exploitation could result in execution of arbitrary code on the vulnerable system in the context of the logged-on user. Additionally, the behaviour of the target machine is dependent on the intention of the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate abnormally. | ||||
| Situation |
HTTP_SS-Microsoft-Silverlight-Pointer-Handling-Memory-Corruption
|
||||
| Situation |
File-Text_Microsoft-Silverlight-Pointer-Handling-Memory-Corruption
|
||||
| References: |
|
MS10-057 Microsoft-Office-Excel-Memory-Corruption-CVE-2010-2562
| About this vulnerability: | A memory corruption vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-328-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Excel. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-Excel-Memory-Corruption-CVE-2010-2562
|
||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-Memory-Corruption-CVE-2010-2562
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-Memory-Corruption-CVE-2010-2562
|
||||
| References: |
|
MS10-056 Microsoft-Word-HTML-Linked-Objects-Memory-Corruption-CVE-2010-1903
| About this vulnerability: | A memory corruption vulnerability in Microsoft Word | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-329-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office | ||||
| Type: | Buffer Overflow | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Word. | ||||
| Situation |
E-Mail_BS-Microsoft-Word-HTML-Linked-Objects-Memory-Corruption-CVE-2010-1903
|
||||
| Situation |
HTTP_SS-Microsoft-Word-HTML-Linked-Objects-Memory-Corruption-CVE-2010-1903
|
||||
| Situation |
File-OLE_Microsoft-Word-HTML-Linked-Objects-Memory-Corruption-CVE-2010-1903
|
||||
| References: |
|
MS10-056 Microsoft-Word-RTF-Parsing-Buffer-Overflow-CVE-2010-1902
| About this vulnerability: | A memory corruption vulnerability in Microsoft Word | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-328-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office | ||||
| Type: | Buffer Overflow | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Word. | ||||
| Situation |
E-Mail_BS-Microsoft-Word-RTF-Parsing-Buffer-Overflow-CVE-2010-1902
|
||||
| Situation |
HTTP_SS-Microsoft-Word-RTF-Parsing-Buffer-Overflow-CVE-2010-1902
|
||||
| Situation |
File-Binary_Microsoft-Word-RTF-Parsing-Buffer-Overflow-CVE-2010-1902
|
||||
| References: |
|
MS10-056 Microsoft-Word-RTF-Parsing-Engine-Memory-Corruption-CVE-2010-1901
| About this vulnerability: | A memory corruption vulnerability in Microsoft Word | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-328-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Word. | ||||
| Situation |
E-Mail_BS-Microsoft-Word-RTF-Parsing-Engine-Memory-Corruption-CVE-2010-1901
|
||||
| Situation |
HTTP_SS-Microsoft-Word-RTF-Parsing-Engine-Memory-Corruption-CVE-2010-1901
|
||||
| Situation |
File-Binary_Microsoft-Word-RTF-Parsing-Engine-Memory-Corruption-CVE-2010-1901
|
||||
| References: |
|
MS10-054 SMB-Pool-Overflow-MS10-054
| About this vulnerability: | A memory corruption vulnerability in Samba | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-328-4219 | ||||
| Last changed: | sgpkg-ips-408-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in SMB Server. A remote unauthenticated attacker can exploit this vulnerability by specifying a malicious request to compromise the vulnerable system. | ||||
| Situation |
SMB-TCP_SMB-Server-Pool-Overflow-MS10-054-2
|
||||
| Situation |
SMB-TCP_SMB-Server-Pool-Overflow-MS10-054
|
||||
| References: |
|
MS10-053 Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-2557
| About this vulnerability: | A memory corruption vulnerability in Microsoft Internet Explorer | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-330-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Internet Explorer. By enticing a target user to visit a malicious web page, an attacker can execute arbitrary code with the privileges of the logged in user. | ||||
| Situation |
HTTP_SS-Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-2557
|
||||
| Situation |
File-Text_Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-2557
|
||||
| References: |
|
MS10-053 Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-2559
| About this vulnerability: | A memory corruption vulnerability in Microsoft Internet Explorer | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-330-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Internet Explorer. By enticing a target user to visit a malicious web page, an attacker can execute arbitrary code with the privileges of the logged in user. | ||||
| Situation |
HTTP_SS-Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-2559
|
||||
| Situation |
File-Text_Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-2559
|
||||
| References: |
|
MS10-053 Microsoft-Internet-Explorer-HTML-Layout-Memory-Corruption-CVE-2010-2560
| About this vulnerability: | A memory corruption vulnerability in Microsoft Internet Explorer | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-329-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Internet Explorer. By enticing a target user to visit a malicious web page, an attacker can execute arbitrary code with the privileges of the logged in user. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-HTML-Layout-Memory-Corruption-CVE-2010-2560
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-HTML-Layout-CVE-2010-2560
|
||||
| References: |
|
MS10-051 Microsoft-XML-Core-Services-Memory-Corruption-CVE-2010-2561
| About this vulnerability: | A memory corruption vulnerability in Microsoft XML Core Services | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-331-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft XML Core Services. By enticing a target user to visit a malicious web page, an attacker can execute arbitrary code with the privileges of the logged in user. | ||||
| Situation |
HTTP_SS-Core-Services-Memory-Corruption-CVE-2010-2561
|
||||
| Situation |
HTTP_SHS-Core-Services-Memory-Corruption-CVE-2010-2561
|
||||
| References: |
|
MS10-050 Microsoft-Windows-Movie-Maker-Mediaclipstring-Buffer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Windows Movie Maker | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-384-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Windows Movie Maker; | ||||
| Type: | Buffer Overflow | ||||
| Description: | A buffer overflow vulnerability exists in Microsoft Windows Movie Maker. The flaw is due to a boundary error in the way the affected product handles specially crafted MediaClipString data in a Movie Maker project file. A remote attacker can leverage this vulnerability by enticing a target user to open a malicious project file (.MSWMM). A successful attack can result in the injection and execution of arbitrary code on a target system. The resulting code would execute within the security context of the logged in user. In an unsuccessful attack, the affected application may abnormally terminate. | ||||
| Situation |
HTTP_SS-Microsoft-Windows-Movie-Maker-Mediaclipstring-Buffer-Overflow
|
||||
| Situation |
File-OLE_Microsoft-Windows-Movie-Maker-Mediaclipstring-Buffer-Overflow
|
||||
| References: |
|
MS10-045 Microsoft-Outlook-SMB-Attachment
| About this vulnerability: | A vulnerability in Microsoft Outlook | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-321-4219 | ||||
| Last changed: | sgpkg-ips-408-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Outlook | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Outlook. | ||||
| Situation |
E-Mail_BS-Microsoft-Outlook-SMB-Attachment
|
||||
| Situation |
E-Mail_BS-Microsoft-Outlook-SMB-Msg-Attachment
|
||||
| Situation |
HTTP_SS-Microsoft-Outlook-SMB-Msg-Attachment
|
||||
| Situation |
File-Binary_Microsoft-Outlook-SMB-Attachment
|
||||
| Situation |
File-OLE_Microsoft-Outlook-SMB-Msg-Attachment
|
||||
| References: |
|
MS10-044 Microsoft-Office-Access-ActiveX-Control-Memory-Corruption-CVE-2010-0814
| About this vulnerability: | A memory corruption vulnerability in Microsoft Office Access ActiveX Control | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-321-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Office Access ActiveX Control. By enticing a target user to visit a malicious web page, an attacker can execute arbitrary code with the privileges of the logged in user. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Access-ActiveX-Control-Memory-Corruption-CVE-2010-0814
|
||||
| Situation |
File-Text_Microsoft-Office-Access-ActiveX-Memory-Corruption-CVE-2010-0814
|
||||
| References: |
|
MS10-042 Microsoft-Help-Centre-Malformed-Escape-Sequence
| About this vulnerability: | A vulnerability in Microsoft Help Centre | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-312-4219 | ||||
| Last changed: | sgpkg-ips-414-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in the Microsoft Windows Help Centre protocol handler (HPC). The protocol handler does not process invalid escape sequences correctly, allowing execution of arbitrary code in the context of the current user. | ||||
| Situation |
HTTP_SS-Microsoft-Help-Centre-Malformed-Escape-Sequence
|
||||
| Situation |
HTTP_SS-Microsoft-Help-Centre-Protocol-Access
|
||||
| Situation |
File-Text_Microsoft-Help-Centre-Code-Execution
|
||||
| Situation |
File-Text_Microsoft-Help-Centre-Malformed-Escape-Sequence
|
||||
| Situation |
File-Text_Microsoft-Help-Centre-Protocol-Access
|
||||
| References: |
|
MS10-039, MS10-035 Microsoft-Internet-Explorer-toStaticHTML-Cross-Site-Scripting
| About this vulnerability: | A cross site scripting vulnerability in Microsoft Internet Explorer | |||||
| Risk: | Moderate | |||||
| First detected in: | sgpkg-ips-327-4219 | |||||
| Last changed: | sgpkg-ips-407-4219 | |||||
| Platform: | Windows | |||||
| Software: | Internet Explorer | |||||
| Type: | Cross-site Scripting | |||||
| Description: | There is a cross site scripting vulnerability in Microsoft Internet Explorer. By enticing the target user to view a web page that uses the "toStaticHTML" method maliciously, a remote attacker can disclose sensitive information or execute arbitrary script code within the context of the target user's browser. | |||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-toStaticHTML-Cross-Site-Scripting
|
|||||
| Situation |
File-Text_Microsoft-Internet-Explorer-toStaticHTML-Cross-Site-Scripting
|
|||||
| References: |
|
MS10-039 Microsoft-Office-Sharepoint-Server-help.aspx-Cross-Site-Scripting
| About this vulnerability: | A cross-site scripting vulnerability in Microsoft Office SharePoint Server | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-303-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office SharePoint Server | ||||
| Type: | Cross-site Scripting | ||||
| Description: | There is a cross-site scripting vulnerability in Microsoft Office SharePoint Server. A remote attacker can exploit this vulnerability by embedding malicious HTML or script code as a part of a URL, to be executed in the target user's browser with the privileges of the website. | ||||
| Situation |
HTTP_CRL-Microsoft-Office-Sharepoint-Server-help.aspx-Cross-Site-Scripting
|
||||
| References: |
|
MS10-039 Microsoft-Sharepoint-Server-help.aspx-Denial-Of-Service
| About this vulnerability: | A vulnerability in Microsoft Windows Sharepoint Services | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-317-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office SharePoint Server | ||||
| Type: | Malfunction | ||||
| Description: | A denial of service vulnerability exists in Microsoft Office SharePoint. The flaw is due to the way that the affected product handles maliciously crafted requests sent to the Help.aspx page. A remote attacker can exploit this vulnerability to cause a denial of service condition by sending consecutive number of requests. Successful exploitation would cause the Microsoft Office SharePoint server to become unresponsive until an administrator manually restarts the application pool, and thus causing a denial of service condition. | ||||
| Situation |
HTTP_CSU-Microsoft-Sharepoint-Server-help.aspx-Denial-Of-Service
|
||||
| References: |
|
MS10-038 Excel-Memory-Corruption-CVE-2010-0823
| About this vulnerability: | A memory corruption vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-312-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Excel. | ||||
| Situation |
E-Mail_BS-Excel-Memory-Corruption-CVE-2010-0823
|
||||
| Situation |
HTTP_SS-Excel-Memory-Corruption-CVE-2010-0823
|
||||
| Situation |
File-OLE_Excel-Memory-Corruption-CVE-2010-0823
|
||||
| References: |
|
MS10-038 Microsoft-Excel-ExternName-Record-Parsing-Buffer-Overflow-CVE-2010-1249
| About this vulnerability: | A memory corruption vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-320-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Excel. | ||||
| Situation |
E-Mail_BS-Excel-ExternName-Record-Parsing-Buffer-Overflow-CVE-2010-1249
|
||||
| Situation |
HTTP_SS-Microsoft-Excel-ExternName-Record-Parsing-Buffer-Overflow-CVE-2010-1249
|
||||
| Situation |
File-OLE_Microsoft-Excel-ExternName-Record-Parsing-Buffer-Overflow-CVE-2010-1249
|
||||
| References: |
|
MS10-038 Microsoft-Excel-SxView-Record-Parsing-Memory-Corruption-CVE-2010-0821
| About this vulnerability: | A memory corruption vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-320-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Excel. | ||||
| Situation |
E-Mail_BS-Microsoft-Excel-SxView-Record-Parsing-Memory-Corruption-CVE-2010-0821
|
||||
| Situation |
HTTP_SS-Microsoft-Excel-SxView-Record-Parsing-Memory-Corruption-CVE-2010-0821
|
||||
| Situation |
File-OLE_Microsoft-Excel-SxView-Record-Parsing-Memory-Corruption-CVE-2010-0821
|
||||
| References: |
|
MS10-038 Microsoft-Office-Excel-ADO-Object-Parsing-Code-Execution
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-401-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel; Microsoft Excel Viewer; Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | A code execution vulnerability exists in Microsoft Office Excel. The vulnerability is due to the way the vulnerable product parses Excel documents that contain malformed ADO Objects, allowing for memory corruption. Remote attackers can exploit this vulnerability by enticing target users to open a malicious Excel file, potentially causing arbitrary code to be injected and executed in the security context of the current logged on user. In an attack scenario, where arbitrary code is injected and executed on the target machine, the behaviour of the target is dependent on the intention of the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate abnormally. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-ADO-Object-Parsing-Code-Execution
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-ADO-Object-Parsing-Code-Execution
|
||||
| References: |
|
MS10-038 Microsoft-Office-Excel-Hfpicture-Record-Buffer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-384-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2002; Microsoft Office 2004; Microsoft Office XP | ||||
| Type: | Buffer Overflow | ||||
| Description: | A buffer overflow vulnerability exists in Microsoft Office Excel products. The vulnerability is due to improper parsing of an Excel file that includes a malformed HFPicture record. Remote attackers can exploit this vulnerability by enticing target users to open a malicious Excel file, potentially causing arbitrary code to be injected and executed in the security context of the current user. In an attack scenario, where arbitrary code is injected and executed on the target machine, the behaviour of the target is dependent on the intention of the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate as a result of invalid memory access. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-Hfpicture-Record-Buffer-Overflow
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-Hfpicture-Record-Buffer-Overflow
|
||||
| References: |
|
MS10-038 Microsoft-Office-Excel-Obj-Record-Stack-Buffer-Overflow-CVE-2010-0822
| About this vulnerability: | A buffer overflow vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-319-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft Office | ||||
| Type: | Buffer Overflow | ||||
| Description: | There is a buffer overflow vulnerability in Microsoft Excel. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-Excel-Obj-Record-Stack-Buffer-Overflow-CVE-2010-0822
|
||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-Obj-Record-Stack-Buffer-Overflow-CVE-2010-0822
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-Obj-Record-Stack-Buffer-Overflow-CVE-2010-0822
|
||||
| References: |
|
MS10-038 Microsoft-Office-Excel-Realtimedata-Record-Parsing-Memory-Corruption
| About this vulnerability: | A vulnerability in Microsoft Office Excel | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-401-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel | ||||
| Type: | Malfunction | ||||
| Description: | A code execution vulnerability exists in Microsoft Office Excel 2002. The vulnerability is due to the way the vulnerable product parses RealTimeData records in Excel documents, allowing for memory corruption. Remote attackers can exploit this vulnerability by enticing target users to open a malicious Excel file, potentially causing arbitrary code to be injected and executed in the security context of the currently logged on user. In an attack scenario, where arbitrary code is injected and executed on the target machine, the behaviour of the target is dependent on the intention of the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate abnormally. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-Realtimedata-Record-Parsing-Memory-Corruption
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-Realtimedata-Record-Parsing-Memory-Corruption
|
||||
| References: |
|
MS10-038 Microsoft-Office-Excel-RTD-Buffer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-388-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel; Microsoft Office | ||||
| Type: | Buffer Overflow | ||||
| Description: | A buffer overflow vulnerability exists in Microsoft Office Excel. The vulnerability is due to a flaw while parsing specially crafted RealTimeData (RTD) records within Excel files. In an attack scenario, where arbitrary code is injected and executed on the target machine, the behaviour of the target is dependent on the intention of the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-RTD-Buffer-Overflow
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-RTD-Buffer-Overflow
|
||||
| References: |
|
MS10-038 Microsoft-Office-Excel-SxView-SXStreamID-Memory-Corruption-CVE-2010-1245
| About this vulnerability: | A memory corruption vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-321-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-SxView-SXStreamID-Memory-Corruption-CVE-2010-1245
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-SxView-SXStreamID-CVE-2010-1245
|
||||
| References: |
|
MS10-038 Microsoft-Office-Excel-WOpt-Record-Memory-Corruption-CVE-2010-0824
| About this vulnerability: | A memory corruption vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-320-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft Office | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Excel. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-Excel-WOpt-Record-Memory-Corruption-CVE-2010-0824
|
||||
| Situation |
HTTP_SS-Microsoft-Office-Excel-WOpt-Record-Memory-Corruption-CVE-2010-0824
|
||||
| Situation |
File-OLE_Microsoft-Office-Excel-WOpt-Record-Memory-Corruption-CVE-2010-0824
|
||||
| References: |
|
MS10-039, MS10-035 Microsoft-Internet-Explorer-toStaticHTML-Cross-Site-Scripting
| About this vulnerability: | A cross site scripting vulnerability in Microsoft Internet Explorer | |||||
| Risk: | Moderate | |||||
| First detected in: | sgpkg-ips-327-4219 | |||||
| Last changed: | sgpkg-ips-407-4219 | |||||
| Platform: | Windows | |||||
| Software: | Internet Explorer | |||||
| Type: | Cross-site Scripting | |||||
| Description: | There is a cross site scripting vulnerability in Microsoft Internet Explorer. By enticing the target user to view a web page that uses the "toStaticHTML" method maliciously, a remote attacker can disclose sensitive information or execute arbitrary script code within the context of the target user's browser. | |||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-toStaticHTML-Cross-Site-Scripting
|
|||||
| Situation |
File-Text_Microsoft-Internet-Explorer-toStaticHTML-Cross-Site-Scripting
|
|||||
| References: |
|
MS10-035 Microsoft-Internet-Explorer-URI-Redirection-Security-Bypass
| About this vulnerability: | A security bypass vulnerability in Microsoft Internet Explorer | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-287-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer | ||||
| Type: | Malfunction | ||||
| Description: | There is a security bypass vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-URI-Redirection-Security-Bypass
|
||||
| Situation |
HTTP_SHS-Microsoft-Internet-Explorer-URI-Redirection-Security-Bypass
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-URI-Redirection-Security-Bypass
|
||||
| References: |
|
MS10-034 Microsoft-Internet-Explorer-8-Developer-Tools-Code-Execution-CVE-2010-0811
| About this vulnerability: | A code execution vulnerability in the Microsoft Internet Explorer 8 Developer Tools | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-310-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a remote code execution vulnerability in the Microsoft Internet Explorer 8 Developer Tools. | ||||
| Situation |
HTTP_SS-Internet-Explorer-8-Developer-Tools-Code-Execution-CVE-2010-0811
|
||||
| Situation |
File-Text_Internet-Explorer-8-Developer-Tools-Code-Execution-CVE-2010-0811
|
||||
| References: |
|
MS10-033 Microsoft-Media-Decompression-Vulnerability-CVE-2010-1879
| About this vulnerability: | Code execution vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-310-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows Vista; Windows 2008 | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft Windows. By persuading a target user to open a malicious media file, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
E-Mail_BS-Microsoft-Media-Decompression-Vulnerability-CVE-2010-1879
|
||||
| Situation |
HTTP_SS-Microsoft-Media-Decompression-Vulnerability-CVE-2010-1879
|
||||
| Situation |
File-Binary_Microsoft-Media-Decompression-Vulnerability-CVE-2010-1879
|
||||
| References: |
|
MS10-033 Microsoft-Windows-Mjpeg-Media-Decompression-Code-Execution
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-402-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | A remote code execution vulnerability exists in Microsoft Windows DirectShow component. The vulnerability is caused by improper handling of compressed data in media files. An attacker can exploit this vulnerability by enticing a target user to open specially crafted media file. In attack scenarios where code execution is successful the injected code will be executed within the context of the currently logged in user. When code execution is not successful, the affected application may terminate abnormally, leading to a denial of service condition. | ||||
| Situation |
HTTP_SS-Microsoft-Windows-Mjpeg-Media-Decompression-Code-Execution
|
||||
| Situation |
File-Binary_Microsoft-Windows-Mjpeg-Media-Decompression-Code-Execution
|
||||
| References: |
|
MS10-031 Microsoft-Outlook-Express-And-Windows-Mail-Integer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Outlook Express and Windows Mail | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-304-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Outlook Express | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Outlook Express and Windows Mail. | ||||
| Situation |
POP3_SS-Microsoft-Outlook-Express-And-Windows-Mail-Integer-Overflow
|
||||
| References: |
|
MS10-030 Microsoft-VBA6-Stack-Memory-Corruption
| About this vulnerability: | A vulnerability in Microsoft Visual Basic for Applications | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-304-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2003; Microsoft Office 2007 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Visual Basic for Applications. | ||||
| Situation |
HTTP_SS-Microsoft-VBA6-Stack-Memory-Corruption
|
||||
| Situation |
File-OLE_Microsoft-VBA6-Stack-Memory-Corruption
|
||||
| References: |
|
MS10-026 Microsoft-DirectShow-Audio-Decoder-Stack-Overflow
| About this vulnerability: | A vulnerability in Microsoft DirectShow | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-300-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows Vista; Windows 2008 | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft DirectShow. | ||||
| Situation |
HTTP_SS-Microsoft-DirectShow-Audio-Decoder-Stack-Overflow
|
||||
| Situation |
File-Binary_Microsoft-DirectShow-Audio-Decoder-Stack-Overflow
|
||||
| References: |
|
MS10-025 Media-Services-Buffer-Overflow-CVE-2010-0478
| About this vulnerability: | A vulnerability in Microsoft Windows Media Service 4.1 | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-300-4219 | ||||
| Last changed: | sgpkg-ips-408-4219 | ||||
| Platform: | Windows 2000 | ||||
| Software: | <os> | ||||
| Type: | Buffer Overflow | ||||
| Description: | There is a buffer overflow vulnerability in Microsoft Windows Media Service 4.1. When exploited successfully, the vulnerability allows remote code execution. | ||||
| Situation |
Generic_UDP-Media-Services-Buffer-Overflow-CVE-2010-0478
|
||||
| Situation |
Generic_CS-Media-Services-Buffer-Overflow-Exploit-CVE-2010-0478
|
||||
| Situation |
Generic_CS-Media-Services-Buffer-Overflow-CVE-2010-0478
|
||||
| References: |
|
MS10-024 Microsoft-Windows-SMTP-Service-MX-Record-Denial-Of-Service
| About this vulnerability: | An attempt to exploit vulnerability in Windows SMTP service detected | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-394-4219 | ||||
| Last changed: | sgpkg-ips-413-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows 2008 | ||||
| Software: | Exchange Server 2000; Exchange Server 2003 | ||||
| Type: | Malfunction | ||||
| Description: | A denial of service vulnerability has been reported in Microsoft Windows Simple Mail Transfer Protocol (SMTP) service. The vulnerability is due to a memory access error when handling DNS Mail Exchanger (MX) resource records. An attacker can exploit this vulnerability by sending a specifically crafted response to an MX resource record query. | ||||
| Situation |
DNS-UDP_Microsoft-Windows-SMTP-Service-MX-Record-Denial-Of-Service
|
||||
| References: |
|
MS10-023 Microsoft-Publisher-File-Conversion-Textbox-Processing-Buffer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Publisher | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-319-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Publisher 2002; Microsoft Publisher 2003; Microsoft Publisher 2007 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Publisher. | ||||
| Situation |
HTTP_SS-Microsoft-Publisher-File-Conversion-Textbox-Processing-Buffer-Overflow
|
||||
| Situation |
File-OLE_Microsoft-Publisher-File-Conversion-Textbox-Processing-Buffer-Overflow
|
||||
| References: |
|
MS10-022 Microsoft-Windows-VBScript-Help-File-Code-Execution
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-290-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003 | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Windows. | ||||
| Situation |
HTTP_SS-Microsoft-Windows-VBScript-Help-File-Code-Execution-2
|
||||
| Situation |
HTTP_SS-Microsoft-Windows-VBScript-Help-File-Code-Execution
|
||||
| Situation |
File-Text_Microsoft-Windows-VBScript-Help-File-Code-Execution-2
|
||||
| Situation |
File-Text_Microsoft-Windows-VBScript-Help-File-Code-Execution
|
||||
| References: |
|
MS10-020 Microsoft-Windows-Kernel-SMB2-DOS
| About this vulnerability: | Denial of Service condition in Windows Kernel SMB2 | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-266-3038 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a Denial of Service condition in the Windows Kernel SMB2 handling. | ||||
| Situation |
NetBIOS-TCP_SMB2-Windows-Kernel-DOS
|
||||
| References: |
|
MS10-020 Microsoft-Windows-Smb-Client-Message-Size-Vulnerability
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-415-4219 | ||||
| Last changed: | sgpkg-ips-415-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Buffer Overflow | ||||
| Description: | A remote code execution vulnerability exists in Microsoft Windows SMB Client. The vulnerability is due to improper validation of certain SMB fields when parsing transaction responses. Remote unauthenticated attackers could exploit this vulnerability by enticing a user to connect to a malicious SMB server and sending a specially crafted SMB response to the target machine. Successful exploitation would allow for arbitrary code injection and execution with the privileges of the operating system kernel (Ring 0). Code injection that does not result in execution could crash the target system, and result in a Denial of Service condition. | ||||
| Situation |
NetBIOS-TCP_Microsoft-Windows-Smb-Client-Message-Size-Vulnerability
|
||||
| References: |
|
MS10-020 Microsoft-Windows-Smb-Client-Response-Parsing-Memory-Corruption
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-415-4219 | ||||
| Last changed: | sgpkg-ips-415-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | A remote code execution vulnerability exists in Microsoft Windows SMB Client. The vulnerability is due to improper validation of certain SMB fields when parsing transaction responses. Remote unauthenticated attackers could exploit this vulnerability by enticing a user to connect to a malicious SMB server and sending a specially crafted SMB response to the target machine. Successful exploitation would allow for arbitrary code injection and execution with the privileges of the operating system kernel (Ring 0). Code injection that does not result in execution could crash the target system, and result in a Denial of Service condition. | ||||
| Situation |
SMB-TCP_Microsoft-Windows-Smb-Client-Response-Parsing-Memory-Corruption
|
||||
| References: |
|
MS10-020 Microsoft-Windows-SMB-Client-Transaction-BOF-CVE-2010-0270
| About this vulnerability: | A buffer overflow vulnerability in Microsoft Windows SMB Client | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-302-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2008; Windows 7 | ||||
| Software: | <os> | ||||
| Type: | Buffer Overflow | ||||
| Description: | There is a buffer overflow vulnerability in Microsoft Windows SMB Client. A remote unauthenticated attacker can exploit this vulnerability by enticing a user to connect to a malicious SMB server, and sending a specially crafted SMB response to the target machine. | ||||
| Situation |
SMB-TCP_Microsoft-Windows-SMB-Client-Transaction-BOF-Exploit-CVE-2010-0270
|
||||
| References: |
|
MS10-020 SMB-Client-Memory-Allocation-CVE-2010-0269
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | Critical | ||||
| First detected in: | sgpkg-ips-300-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows Vista; Windows 2008; Windows 7 | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a client-side vulnerability in Microsoft Windows SMBv1. When exploited successfully, the vulnerability allows code execution in ring0 context. | ||||
| Situation |
SMB-TCP_SMB-Client-Memory-Allocation-CVE-2010-0269
|
||||
| References: |
|
MS10-018 Microsoft-Internet-Explorer-Invalid-Pointer-Reference-CVE-2010-0806
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-293-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Invalid-Pointer-Reference-CVE-2010-0806
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Invalid-Pointer-Reference-CVE-2010-0806
|
||||
| References: |
|
MS10-018 Microsoft-Internet-Explorer-onreadystatechange-Use-After-Free
| About this vulnerability: | A memory corruption vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-298-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer | ||||
| Type: | Malfunction | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Internet Explorer. A remote attacker can exploit this vulnerability by enticing a target user to open a maliciously crafted HTML document to execute non-privileged arbitrary code. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-onreadystatechange-Use-After-Free
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-onreadystatechange-Use-After-Free
|
||||
| References: |
|
MS10-018 Microsoft-Internet-Explorer-Uninitialized-Object-Memory-Corruption
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-414-4219 | ||||
| Last changed: | sgpkg-ips-414-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer | ||||
| Type: | Malfunction | ||||
| Description: | A memory corruption vulnerability exists in Microsoft Internet Explorer web browser. The vulnerability is due to an error while accessing an object that has been already deleted or not initialized. This would result in accessing arbitrary memory content and can be exploited for code execution. Remote attackers can exploit this vulnerability by enticing target users to visit a malicious web page. Successful exploitation could result in execution of arbitrary code on the vulnerable system in the context of the logged-on user. The behaviour of the target machine is dependent on the intention of the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate abnormally. | ||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Uninitialized-Object-Memory-Corruption
|
||||
| References: |
|
MS10-017 Microsoft-Excel-DbOrParamQry-Record-Parsing-CVE-2010-0264
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-292-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2002; Microsoft Excel 2004 for Mac; Microsoft Excel 2008 for Mac | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-DbOrParamQry-Record-Parsing-CVE-2010-0264
|
||||
| Situation |
File-OLE_Microsoft-Excel-DbOrParamQry-Record-Parsing-CVE-2010-0264
|
||||
| References: |
|
MS10-017 Microsoft-Excel-FNGROUPNAME-Record-Uninitialized-Memory-CVE-2010-0262
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-292-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2007; Microsoft Excel 2004 for Mac | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-FNGROUPNAME-Record-Uninitialized-Memory-CVE-2010-0262
|
||||
| Situation |
File-OLE_Microsoft-Excel-FNGROUPNAME-Record-Uninitialized-Memory-CVE-2010-0262
|
||||
| References: |
|
MS10-017 Microsoft-Excel-MDXSET-Record-Heap-Overflow-CVE-2010-0261
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-292-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2007 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-MDXSET-Record-Heap-Overflow-CVE-2010-0261
|
||||
| Situation |
File-OLE_Microsoft-Excel-MDXSET-Record-Heap-Overflow-CVE-2010-0261
|
||||
| References: |
|
MS10-017 Microsoft-Excel-MDXTUPLE-Record-Heap-Overflow-CVE-2010-0260
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-292-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2007; Microsoft Excel Viewer | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-MDXTUPLE-Record-Heap-Overflow-CVE-2010-0260
|
||||
| Situation |
File-OLE_Microsoft-Excel-MDXTUPLE-Record-Heap-Overflow-CVE-2010-0260
|
||||
| References: |
|
MS10-017 Microsoft-Excel-Record-Memory-Corruption-CVE-2010-0257
| About this vulnerability: | A vulnerability in Microsoft Excel | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-292-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Excel 2002 | ||||
| Type: | Input Validation | ||||
| Description: | There is a memory corruption vulnerability in Microsoft Excel. | ||||
| Situation |
HTTP_SS-Microsoft-Excel-Record-Memory-Corruption-CVE-2010-0257
|
||||
| Situation |
File-OLE_Microsoft-Excel-Record-Memory-Corruption-CVE-2010-0257
|
||||
| References: |
|
MS10-016 Microsoft-Windows-Movie-Maker-And-Producer-Buffer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Producer | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-389-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Producer; Microsoft Windows Movie Maker | ||||
| Type: | Buffer Overflow | ||||
| Description: | A buffer overflow vulnerability exists in Microsoft Windows Movie Maker and Microsoft Producer. The flaw is due to the way the affected products parse maliciously crafted project files. A remote attacker can leverage this vulnerability by enticing a target user to open a malicious file. A successful attack can result in the injection and execution of arbitrary code on a target system. The resulting code would execute within the security context of the logged in user. In an unsuccessful attack, the affected application may abnormally terminate. | ||||
| Situation |
HTTP_SS-Microsoft-Windows-Movie-Maker-And-Producer-Buffer-Overflow
|
||||
| Situation |
File-OLE_Microsoft-Windows-Movie-Maker-And-Producer-Buffer-Overflow
|
||||
| References: |
|
MS10-013 Microsoft-DirectShow-Heap-Overflow
| About this vulnerability: | A vulnerability in Microsoft DirectShow | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-283-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows Vista; Windows 2008; Windows 7 | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft DirectShow. | ||||
| Situation |
HTTP_SS-Microsoft-DirectShow-Heap-Overflow
|
||||
| Situation |
File-Binary_Microsoft-DirectShow-Heap-Overflow
|
||||
| References: |
|
MS10-012 Microsoft-Windows-SMB-Server-Denial-Of-Service-CVE-2010-0022
| About this vulnerability: | A denial of service vulnerability in Microsoft Windows SMB server | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-283-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a denial of service vulnerability in Microsoft Windows SMB server. | ||||
| Situation |
SMB-TCP_Microsoft-Windows-SMB-Server-Denial-Of-Service-CVE-2010-0022
|
||||
| References: |
|
MS10-012 Microsoft-Windows-SMB-Server-Ntlm-Authentication-Lack-Of-Entropy
| About this vulnerability: | An NTLM authentication bypass vulnerability in Microsoft Windows SMB server | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-284-4219 | ||||
| Last changed: | sgpkg-ips-284-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is an NTLM authentication bypass vulnerability in Microsoft Windows SMB server. A remote unauthenticated attacker can exploit this vulnerability to access the SMB service under the credentials of an authorized user. Depending on the privileges of the user and the system configuration, an attacker may obtain read/write access to the files system and execute arbitrary code by deploying DCE/RPC over SMB. | ||||
| Situation |
Analyzer_Microsoft-Windows-Smb-Server-Ntlm-Authentication-Bypass-CVE-2010-0231
|
||||
| References: |
|
MS10-012 Microsoft-Windows-SMB-Server-Remote-Code-Execution-CVE-2010-0020
| About this vulnerability: | A buffer overflow vulnerability in Microsoft Windows SMB server | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-283-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Buffer Overflow | ||||
| Description: | There is a buffer overflow vulnerability in Microsoft Windows SMB server. An authenticated remote attacker can send specially crafted SMB packets to compromise the vulnerable system. | ||||
| Situation |
SMB-TCP_CHS-Microsoft-Windows-SMB-Server-Remote-Code-Execution-MS10-012
|
||||
| References: |
|
MS10-008 Microsoft-Data-Analyzer-ActiveX-Control-Code-Execution-CVE-2010-0252
| About this vulnerability: | A code execution vulnerability in the Microsoft Data Analyzer ActiveX Control | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-282-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Malfunction | ||||
| Description: | There is a remote code execution vulnerability in the Microsoft Data Analyzer ActiveX Control. | ||||
| Situation |
HTTP_SS-Microsoft-Data-Analyzer-ActiveX-Control-Code-Execution-CVE-2010-0252
|
||||
| Situation |
File-Text_Microsoft-Data-Analyzer-ActiveX-Control-Code-Execution-CVE-2010-0252
|
||||
| References: |
|
MS10-007 Microsoft-Internet-Explorer-Url-Validation
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-281-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Internet Explorer 5.0; Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Url-Validation
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Url-Validation
|
||||
| References: |
|
MS10-006 Microsoft-Windows-SMB-Client-Pool-Corruption
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-281-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003 | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Windows. | ||||
| Situation |
SMB-TCP_Microsoft-Windows-SMB-Client-Pool-Corruption
|
||||
| References: |
|
MS10-006 Microsoft-Windows-SMB-Client-Race-Condition
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-287-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows Vista; Windows 2008; Windows 7 | ||||
| Software: | <os> | ||||
| Type: | Input Validation | ||||
| Description: | There is a vulnerability in Microsoft Windows. | ||||
| Situation |
SMB-TCP_Microsoft-Windows-SMB-Client-Race-Condition
|
||||
| References: |
|
MS10-005 Microsoft-Paint-JPEG-Image-Parsing-Integer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Windows | ||||
| Risk: | Moderate | ||||
| First detected in: | sgpkg-ips-395-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | <os> | ||||
| Type: | Integer Overflow | ||||
| Description: | An integer overflow vulnerability exists in Microsoft Paint, shipped with various versions of Microsoft Windows. The vulnerability is due to an input validation error while parsing specially crafted JPEG image files. Remote attackers can exploit this vulnerability by enticing target users to open maliciously crafted JPEG image files in a vulnerable version of MS Paint. Successful exploitation would cause a heap buffer overflow that can lead to arbitrary code execution in the security context of the logged in user. In an unsuccessful attack, the affected application may abnormally terminate. | ||||
| Situation |
HTTP_SS-Microsoft-Paint-JPEG-Image-Parsing-Integer-Overflow
|
||||
| Situation |
File-JPEG_Microsoft-Paint-JPEG-Image-Parsing-Integer-Overflow
|
||||
| References: |
|
MS10-004 Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0029
| About this vulnerability: | Code execution vulnerability in Microsoft PowerPoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-284-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft PowerPoint | ||||
| Type: | Buffer Overflow | ||||
| Description: | There is a buffer overflow vulnerability in Microsoft PowerPoint. By persuading a target user to open a maliciously named Microsoft PowerPoint file with a vulnerable version of the affected product, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
HTTP_SHS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0029
|
||||
| Situation |
HTTP_Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0029
|
||||
| References: |
|
MS10-004 Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0031
| About this vulnerability: | Code execution vulnerability in Microsoft PowerPoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-281-4219 | ||||
| Last changed: | sgpkg-ips-409-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft PowerPoint | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft PowerPoint. By persuading a target user to open a malicious Microsoft PowerPoint file with a vulnerable version of the affected product, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0031
|
||||
| Situation |
HTTP_SS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0031
|
||||
| Situation |
File-OLE_Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0031
|
||||
| References: |
|
MS10-004 Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0032
| About this vulnerability: | Code execution vulnerability in Microsoft PowerPoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-281-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft PowerPoint | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft PowerPoint. By persuading a target user to open a malicious Microsoft PowerPoint file with a vulnerable version of the affected product, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0032
|
||||
| Situation |
HTTP_SS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0032
|
||||
| Situation |
File-OLE_Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0032
|
||||
| References: |
|
MS10-004 Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0033
| About this vulnerability: | Code execution vulnerability in Microsoft PowerPoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-281-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft PowerPoint | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft PowerPoint. By persuading a target user to open a malicious Microsoft PowerPoint file with a vulnerable version of the affected product, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0033
|
||||
| Situation |
HTTP_SS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0033
|
||||
| Situation |
File-OLE_Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0033
|
||||
| References: |
|
MS10-004 Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0034
| About this vulnerability: | Code execution vulnerability in Microsoft PowerPoint | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-282-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Any Operating System | ||||
| Software: | Microsoft PowerPoint | ||||
| Type: | Malfunction | ||||
| Description: | There is a code execution vulnerability in Microsoft PowerPoint. By persuading a target user to open a malicious Microsoft PowerPoint file with a vulnerable version of the affected product, a remote attacker can execute arbitrary code with the privileges of the currently logged in user. | ||||
| Situation |
E-Mail_BS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0034
|
||||
| Situation |
HTTP_SS-Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0034
|
||||
| Situation |
File-OLE_Microsoft-Office-PowerPoint-Remote-Code-Execution-CVE-2010-0034
|
||||
| References: |
|
MS10-003 Microsoft-Office-MSO-Buffer-Overflow
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-281-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows | ||||
| Software: | Microsoft Office XP; Microsoft Office 2004 | ||||
| Type: | Input Validation | ||||
| Description: | There is a buffer overflow vulnerability in Microsoft Office. | ||||
| Situation |
HTTP_SS-Microsoft-Office-MSO-Buffer-Overflow
|
||||
| Situation |
File-OLE_Microsoft-Office-MSO-Buffer-Overflow
|
||||
| References: |
|
MS10-002 Microsoft-Internet-Explorer-HTML-Object-Memory-Corruption-CVE-2010-0248
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-279-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows Vista; Windows 2008; Windows 7 | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Input Validation | ||||
| Description: | There is a remote code execution vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-HTML-Object-Memory-Corruption-CVE-2010-0248
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-HTML-Object-CVE-2010-0248
|
||||
| References: |
|
MS10-002 Microsoft-Internet-Explorer-Invalid-Pointer-Reference
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-275-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows Vista; Windows 2008; Windows 7 | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Input Validation | ||||
| Description: | There is a remote code execution vulnerability in Microsoft Internet Explorer. This vulnerability is also know with alias Aurora. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Invalid-Pointer-Reference
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Invalid-Pointer-Reference
|
||||
| References: |
|
MS10-002 Microsoft-Internet-Explorer-Uninitialized-Memory-Corruption-CVE-2010-0244
| About this vulnerability: | A vulnerability in Microsoft Internet Explorer | ||||
| Risk: | High | ||||
| First detected in: | sgpkg-ips-279-4219 | ||||
| Last changed: | sgpkg-ips-407-4219 | ||||
| Platform: | Windows 2000; Windows XP; Windows 2003; Windows Vista; Windows 2008; Windows 7 | ||||
| Software: | Internet Explorer 6.0; Internet Explorer 7.0; Internet Explorer 8.0 | ||||
| Type: | Input Validation | ||||
| Description: | There is a remote code execution vulnerability in Microsoft Internet Explorer. | ||||
| Situation |
HTTP_SS-Microsoft-Internet-Explorer-Memory-Corruption-CVE-2010-0244
|
||||
| Situation |
File-Text_Microsoft-Internet-Explorer-Memory-Corruption-CVE-2010-0244
|
||||
| References: |
|