| CVE-2013-3851 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Office 2003 SP3 and 2007 SP3, Word 2003 SP3 and 2007 SP3, Office Compatibility Pack SP3, and Word Viewer allow remote attackers to execute arbitrary code or cause a denial of service (memor… |
| CVE-2013-3850 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Word 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office Compatibility Pack SP3; and Word Viewer allow remote attackers to execute arbitrary code or cause a denial of service (memory corruptio… |
| CVE-2013-3849 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word V… |
| CVE-2013-3848 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word V… |
| CVE-2013-3847 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word V… |
| CVE-2013-3845 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2013-3209 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3208 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3207 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3206 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3205 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrup… |
| CVE-2013-3204 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3203 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3202 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2013-3201 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3158 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Excel 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Memory Co… |
| CVE-2013-3157 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft Office allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Access file,… |
| CVE-2013-3156 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft Office allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Access file,… |
| CVE-2013-3155 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft Office allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Access file,… |
| CVE-2013-1330 |
critical |
— |
10.0 |
|
|
microsoft |
13y ago |
The default configuration of Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007 SP3 and 2010 SP1 and SP2, and Office Web Apps 2010 does not set the EnableViewStateMac attribute, whic… |
| CVE-2013-1315 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; Office Web Apps 2010; Excel 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; and Office Co… |
| CVE-2013-3199 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3194 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2013-3193 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3191 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3190 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3189 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2013-3188 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2013-3187 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3184 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3979 |
low |
— |
3.5 |
|
|
ibmmicrosoft |
13y ago |
Multiple cross-site scripting (XSS) vulnerabilities in the help pages in Web\Content\Help\ in the Web Client in IBM Cognos Command Center (aka Star Command Center or Star Analytics) before 10.1, when… |
| CVE-2013-3178 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Silverlight 5 before 5.1.20513.0 does not properly initialize arrays, which allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via a c… |
| CVE-2013-3171 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
The serialization functionality in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5 does not properly check the permissions of delegate objects, which allows remote attackers to exec… |
| CVE-2013-3164 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2013-3162 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3161 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3153 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3152 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2013-3151 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3150 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2013-3149 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2013-3148 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3147 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrup… |
| CVE-2013-3146 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2013-3145 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2013-3144 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3143 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3134 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 on 64-bit platforms does not properly allocate arrays of structures, which allows remote attackers to exe… |
| CVE-2013-3133 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary code via (1) a craf… |
| CVE-2013-3132 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary c… |
| CVE-2013-3131 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, and Silverlight 5 before 5.1.20513.0, does not properly prevent changes to data in multidimensional arrays of structures, which allows remote… |
| CVE-2013-3127 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
The Microsoft WMV video codec in wmv9vcm.dll, wmvdmod.dll in Windows Media Format Runtime 9 and 9.5, and wmvdecod.dll in Windows Media Format Runtime 11 and Windows Media Player 11 and 12 allows remo… |
| CVE-2013-3115 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3142 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3141 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2013-3139 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3126 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10, when script debugging is enabled, does not properly handle objects in memory during the processing of script, which allows remote attackers to execute arbitrary … |
| CVE-2013-3125 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2013-3124 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2013-3123 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3122 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2013-3121 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3120 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2013-3119 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3118 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2013-3117 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2013-3116 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 7 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrup… |
| CVE-2013-3114 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… |
| CVE-2013-3113 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3112 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3111 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2013-3110 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2013-0941 |
low |
— |
2.1 |
|
|
rsaapachemicrosoft |
13y ago |
EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Win… |
| CVE-2013-1346 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
mpengine.dll in Microsoft Malware Protection Engine before 1.1.9506.0 on x64 platforms allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted… |
| CVE-2013-1335 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Word 2003 SP3 and Word Viewer allow remote attackers to execute arbitrary code via crafted shape data in a Word document, aka "Word Shape Corruption Vulnerability." |
| CVE-2013-1329 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers a buffer underflow, aka "Publisher Buffer Underfl… |
| CVE-2013-1328 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers incorrect pointer handling, aka "Publisher Pointer Ha… |
| CVE-2013-1327 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper memory allocation, aka "Publisher Sig… |
| CVE-2013-1323 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Publisher 2003 SP3 does not properly handle NULL values for unspecified data items, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Inco… |
| CVE-2013-1322 |
critical |
— |
10.0 |
|
|
microsoft |
13y ago |
Microsoft Publisher 2003 SP3 does not properly check table range data, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Invalid Range Check Vulnera… |
| CVE-2013-1321 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Publisher 2003 SP3 does not properly check the data type of an unspecified return value, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher… |
| CVE-2013-1320 |
critical |
— |
10.0 |
|
|
microsoft |
13y ago |
Buffer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Buffer Overflow Vulnerability." |
| CVE-2013-1319 |
critical |
— |
10.0 |
|
|
microsoft |
13y ago |
Microsoft Publisher 2003 SP3 does not properly check the return value of an unspecified method, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Re… |
| CVE-2013-1318 |
critical |
— |
10.0 |
|
|
microsoft |
13y ago |
Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers access to an invalid pointer, aka "Publisher Corrupt Interface Pointer Vulner… |
| CVE-2013-1317 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Integer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper allocation-size calculation, aka "Publisher I… |
| CVE-2013-1316 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Publisher 2003 SP3 does not properly validate the size of an unspecified array, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Negative… |
| CVE-2013-1312 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet E… |
| CVE-2013-1311 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer… |
| CVE-2013-1310 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Ex… |
| CVE-2013-1309 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Intern… |
| CVE-2013-1308 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Intern… |
| CVE-2013-1307 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Ex… |
| CVE-2013-1306 |
critical |
— |
10.0 |
EXP |
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer… |
| CVE-2013-1302 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Microsoft Communicator 2007 R2, Lync 2010, Lync 2010 Attendee, and Lync Server 2013 do not properly handle objects in memory, which allows remote attackers to execute arbitrary code via an invitation… |
| CVE-2013-0811 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Ex… |
| CVE-2013-1338 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Intern… |
| CVE-2013-1304 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Intern… |
| CVE-2013-1303 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Intern… |
| CVE-2013-1296 |
critical |
— |
9.3 |
|
|
microsoft |
13y ago |
The Remote Desktop ActiveX control in mstscax.dll in Microsoft Remote Desktop Connection Client 6.1 and 7.0 does not properly handle objects in memory, which allows remote attackers to execute arbitr… |
| CVE-2013-1290 |
low |
— |
3.5 |
|
|
microsoft |
13y ago |
Microsoft SharePoint Server 2013, in certain configurations involving legacy My Sites, does not properly establish default access controls for a SharePoint list, which allows remote authenticated use… |
