Информационная безопасность
[RU] switch to English


Несанкционированный доступ через freeciv
Опубликовано:16 октября 2010 г.
Источник:
SecurityVulns ID:11202
Тип:клиент
Уровень опасности:
5/10
Описание:Можно получить доступ к файлам и выполнению программ через сценарии.
Затронутые продукты:FREECIV : freeciv 2.2
 FREECIV : freeciv 2.3
CVE:CVE-2010-2445 (freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read arbitrary files or execute arbitrary commands via a scenario that contains Lua functionality, related to the (1) os, (2) io, (3) package, (4) dofile, (5) loadfile, (6) loadlib, (7) module, and (8) require modules or functions.)
Оригинальный текстdocumentMANDRIVA, [ MDVSA-2010:205 ] freeciv (16.10.2010)

Уязвимости безопасности в Microsoft Office
дополнено с 13 октября 2010 г.
Опубликовано:16 октября 2010 г.
Источник:
SecurityVulns ID:11194
Тип:клиент
Уровень опасности:
8/10
Описание:Многочисленные повреждения памяти, переполнения индексов массивов, буферов и т.д. в Microsoft Word и Excel.
Затронутые продукты:MICROSOFT : Office XP
 MICROSOFT : Office 2003
 MICROSOFT : Office 2004 for Mac
 MICROSOFT : Office 2007
 MICROSOFT : Office 2008 for Mac
 MICROSOFT : Office 2010
CVE:CVE-2010-3242 (Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Ghost Record Type Parsing Vulnerability.")
 CVE-2010-3241 (Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate binary file-format information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Out-of-Bounds Memory Write in Parsing Vulnerability.")
 CVE-2010-3240 (Microsoft Excel 2002 SP3 and 2007 SP2; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Real Time Data Array Record Vulnerability.")
 CVE-2010-3239 (Microsoft Excel 2002 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Extra Out of Boundary Record Parsing Vulnerability.")
 CVE-2010-3238 (Microsoft Excel 2002 SP3 and 2003 SP3, and Office 2004 for Mac, does not properly validate binary file-format information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Negative Future Function Vulnerability.")
 CVE-2010-3237 (Microsoft Excel 2002 SP3 and Office 2004 for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Merge Cell Record Pointer Vulnerability.")
 CVE-2010-3236 (Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Out Of Bounds Array Vulnerability.")
 CVE-2010-3235 (Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Formula Biff Record Vulnerability.")
 CVE-2010-3234 (Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Formula Substream Memory Corruption Vulnerability.")
 CVE-2010-3233 (Microsoft Excel 2002 SP3 and 2003 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted .wk3 (aka Lotus 1-2-3 workbook) file, aka "Lotus 1-2-3 Workbook Parsing Vulnerability.")
 CVE-2010-3232 (Microsoft Excel 2003 SP3 and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Excel File Format Parsing Vulnerability.")
 CVE-2010-3231 (Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Excel Record Parsing Memory Corruption Vulnerability.")
 CVE-2010-3230 (Integer overflow in Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel document with crafted record information, aka "Excel Record Parsing Integer Overflow Vulnerability.")
 CVE-2010-3221 (Microsoft Word 2002 SP3 and 2003 SP3, Office 2004 for Mac, and Word Viewer do not properly handle a malformed record during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Parsing Vulnerability.")
 CVE-2010-3220 (Unspecified vulnerability in Microsoft Word 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Word document that triggers memory corruption, aka "Word Parsing Vulnerability.")
 CVE-2010-3219 (Array index vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a crafted Word document that triggers memory corruption, aka "Word Index Parsing Vulnerability.")
 CVE-2010-3218 (Heap-based buffer overflow in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via malformed records in a Word document, aka "Word Heap Overflow Vulnerability.")
 CVE-2010-3217 (Double free vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a Word document with crafted List Format Override (LFO) records, aka "Word Pointer Vulnerability.")
 CVE-2010-3216 (Microsoft Word 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a crafted Word document containing bookmarks that trigger use of an invalid pointer and memory corruption, aka "Word Bookmarks Vulnerability.")
 CVE-2010-3215 (Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly handle unspecified return values during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Return Value Vulnerability.")
 CVE-2010-3214 (Stack-based buffer overflow in Microsoft Word 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; Word Viewer; Office Web Apps; and Word Web App allows remote attackers to execute arbitrary code via a crafted Word document, aka "Word Stack Overflow Vulnerability.")
 CVE-2010-2750 (Array index error in Microsoft Word 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Word document that triggers memory corruption, aka "Word Index Vulnerability.")
 CVE-2010-2748 (Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly check an unspecified boundary during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Boundary Check Vulnerability.")
 CVE-2010-2747 (Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly handle an uninitialized pointer during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Uninitialized Pointer Vulnerability.")
Оригинальный текстdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2010-0517 - Microsoft Office HtmlDlgHelper class memory corruption (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Bookmarks Invalid Pointer Vulnerability (CVE-2010-3216) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Document Array Indexing Vulnerability (CVE-2010-2750) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Return Value Handling Vulnerability (CVE-2010-3215) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel RealTimeData Array Indexing Vulnerability (CVE-2010-3240) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Document Invalid Pointer Vulnerability (CVE-2010-3217) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Formula Substream Memory Corruption (CVE-2010-3234) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Document Stack Overflow Vulnerability (CVE-2010-3214) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Document Heap Overflow Vulnerability (CVE-2010-3218) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Formula Record Dangling Pointer Vulnerability (CVE-2010-3235) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Record Array Indexing Vulnerability (CVE-2010-3236) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word BKF Objects Array Indexing Vulnerability (CVE-2010-3219) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Extra PtgExtraArray Parsing Vulnerability (CVE-2010-3239) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Formula Record Buffer Overflow Vulnerability (CVE-2010-3231) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word LVL Structure Heap Overflow Vulnerability (CVE-2010-3220) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Ghost Record Type Parsing Vulnerability (CVE-2010-3242) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Short Sign Memory Corruption Vulnerability (CVE-2010-3221) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Negative Future Function Vulnerability (CVE-2010-3238) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Out-of-Bounds Memory Write Vulnerability (CVE-2010-3241) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Uninitialized Pointer Vulnerability (CVE-2010-2747) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Word Document Buffer Overflow Vulnerability (CVE-2010-2748) (16.10.2010)
 documentVUPEN Security Research, VUPEN Security Research - Microsoft Office Excel Merge Cell Record Invalid Pointer Vulnerability (CVE-2010-3237) (16.10.2010)
 documentSECUNIA, Secunia Research: Microsoft Excel Lotus 1-2-3 File Parsing Vulnerability (13.10.2010)
 documentSECUNIA, Secunia Research: Microsoft Excel Ghost Record Type Parsing Vulnerability (13.10.2010)
 documentSECUNIA, Secunia Research: Microsoft Excel Record Parsing Integer Overflow Vulnerability (13.10.2010)
 documentMICROSOFT, Microsoft Security Bulletin MS10-080 - Important Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2293211) (13.10.2010)
 documentMICROSOFT, Microsoft Security Bulletin MS10-079 - Important Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2293194) (13.10.2010)
Файлы:Microsoft Security Bulletin MS10-079 - Important Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2293194)
 Microsoft Security Bulletin MS10-080 - Important Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2293211)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород