This module exploits an error while processing the FIB when loading Word files into memory that can be exploited to corrupt memory via a specially crafted DOC file. This module runs a web server waiting for vulnerable clients to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
This module exploits a stack-based buffer overflow in the Microsoft Office Web Components. This module runs a web server waiting for vulnerable clients (Internet Explorer 6) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
This module exploits a buffer overflow in the owc10.dll ActiveX Control included in Microsoft Office Web Components. This module runs a web server waiting for vulnerable clients (Internet Explorer) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
Microsoft Office is prone to a vulnerability that may allow the execution of any library file named rsaenh.dll, if this dll is located in the same folder as a .dotx file. The attacker must entice a victim into opening a specially crafted .dotx file. This file and the associated binary may be delivered to a user through remote WebDAV shares. An attacker may exploit this issue to execute arbitrary code.
This module exploits a buffer overflow on Microsoft Office Publisher when parsing a malformed .PUB file with a specially crafted TextBox item.
This module exploits a buffer overflow on Microsoft Office Publisher when parsing a malformed .PUB file with a specially crafted TextBox item.
This module exploits a memory allocation error in Microsoft PowerPoint Viewer 2003 allows remote attackers to execute arbitrary code via a PowerPoint file with a malformed picture index that triggers memory corruption. This module runs a web server waiting for vulnerable clients to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
This module exploits a buffer overflow on Microsoft Office PowerPoint when parsing a malformed .PPT file.
This module exploits a stack-based buffer overflow in Microsoft Office Powerpoint when parsing a malformed .PPT 4.0 file with a specially crafted printer name. This module runs a web server waiting for vulnerable clients to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
Microsoft Office PowerPoint is prone to a vulnerability that may allow execution of pp4x322.dll if this dll is located in the same folder than a .PPT file. The attacker must entice a victim into opening a specially crafted .PPT file. This file and the associated binary may be delivered to a user through remote WebDAV shares. An attacker may exploit this issue to execute arbitrary code.