Microsoft Corporation

Short Name: Microsoft
Previous Names: [None Entered]
URL: http://www..microsoft.com/ [visit link]
Email: [None Entered]
Security URL: http://www.microsoft.com/security/ [visit link]
Security Email: secureBrand New Doo Doomicrosoft.com
Knowledge Base: http://support.microsoft.com/default.aspx?scid=fh;EN-US;KBHOWTO [visit link]
Notes: Contact web form: http://support.microsoft.com/common/international.aspx?rdpath=fh;en-us;cntactms Security web form: https://www.microsoft.com/technet/security/bulletin/alertus.aspx.

Full Details...

Vulnerabilities by Vendor Product

Microsoft Corporation

Microsoft Corporation
Outlook Express for Mac Watch-list
5.02
Office Web Components (OWC) Watch-list
2000
OSVDB ID: 3006 Microsoft IE OWC Script Execution
OSVDB ID: 3007 Microsoft IE OWC LoadText Read Arbitrary File
OSVDB ID: 3008 Microsoft IE OWC Cut/Paste Data Read and Injection
OSVDB ID: 3009 Microsoft IE OWC Load File Existence Verification
OSVDB ID: 3010 Microsoft IE OWC XMLURL File Existence Verification
OSVDB ID: 3011 Microsoft IE OWC ConnectionFile File Existance Verification
2002
OSVDB ID: 3006 Microsoft IE OWC Script Execution
XP
OSVDB ID: 3007 Microsoft IE OWC LoadText Read Arbitrary File
OSVDB ID: 3008 Microsoft IE OWC Cut/Paste Data Read and Injection
OSVDB ID: 3009 Microsoft IE OWC Load File Existence Verification
OSVDB ID: 3010 Microsoft IE OWC XMLURL File Existence Verification
OSVDB ID: 3011 Microsoft IE OWC ConnectionFile File Existance Verification
Outlook Watch-list
2000
OSVDB ID: 2974 Microsoft IE/Outlook Temporary Internet File Execution
OSVDB ID: 3035 Microsoft WebBrowser Control t:video File Execution
OSVDB ID: 6007 Microsoft IE/Outlook IMG/HREF Tag Code Execution
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
OSVDB ID: 29430 Microsoft Office Malformed Smart Tag Arbitrary Code Execution
OSVDB ID: 29428 Microsoft Office Malformed Chart Record Unspecified Arbitrary Code Execution
OSVDB ID: 31253 Microsoft Outlook E-mail Header Processing Unspecified DoS
OSVDB ID: 31254 Microsoft Outlook Advanced Find .oss File Handling Remote Code Execution
OSVDB ID: 23900 Microsoft Office Excel Malformed Description Arbitrary Code Execution
OSVDB ID: 23899 Microsoft Office Excel BIFF File Processing Malformed BOOLERR Record Arbitrary Code Execution
OSVDB ID: 23902 Microsoft Office Excel Malformed Record Arbitrary Code Execution
OSVDB ID: 23901 Microsoft Office Excel Malformed Graphic Arbitrary Code Execution
2002
OSVDB ID: 2974 Microsoft IE/Outlook Temporary Internet File Execution
OSVDB ID: 6007 Microsoft IE/Outlook IMG/HREF Tag Code Execution
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
OSVDB ID: 29430 Microsoft Office Malformed Smart Tag Arbitrary Code Execution
OSVDB ID: 29428 Microsoft Office Malformed Chart Record Unspecified Arbitrary Code Execution
OSVDB ID: 31252 Microsoft Outlook VEVENT Record Handling Remote Code Execution
OSVDB ID: 31253 Microsoft Outlook E-mail Header Processing Unspecified DoS
OSVDB ID: 31254 Microsoft Outlook Advanced Find .oss File Handling Remote Code Execution
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
All Versions
98
OSVDB ID: 5708 Multiple E-mail Client Long File Name MIME Overflow
OSVDB ID: 6007 Microsoft IE/Outlook IMG/HREF Tag Code Execution
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
2003
OSVDB ID: 5998 Microsoft Outlook Predictable File Caching
OSVDB ID: 6079 Microsoft Outlook Remote XML Loading
OSVDB ID: 6217 Microsoft Outlook RTF Embedded Object Security Bypass
OSVDB ID: 6749 Microsoft Crystal Reports Web Viewer Arbitrary File Access
OSVDB ID: 29430 Microsoft Office Malformed Smart Tag Arbitrary Code Execution
OSVDB ID: 29428 Microsoft Office Malformed Chart Record Unspecified Arbitrary Code Execution
OSVDB ID: 31252 Microsoft Outlook VEVENT Record Handling Remote Code Execution
OSVDB ID: 31253 Microsoft Outlook E-mail Header Processing Unspecified DoS
OSVDB ID: 31254 Microsoft Outlook Advanced Find .oss File Handling Remote Code Execution
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
OSVDB ID: 24081 Microsoft Outlook 2003 Unspecified Malformed Word Attachment DoS
OSVDB ID: 23900 Microsoft Office Excel Malformed Description Arbitrary Code Execution
OSVDB ID: 23899 Microsoft Office Excel BIFF File Processing Malformed BOOLERR Record Arbitrary Code Execution
OSVDB ID: 23902 Microsoft Office Excel Malformed Record Arbitrary Code Execution
OSVDB ID: 23901 Microsoft Office Excel Malformed Graphic Arbitrary Code Execution
OSVDB ID: 23903 Microsoft Office Crafted Routing Slip Arbitrary Code Execution
97
OSVDB ID: 6007 Microsoft IE/Outlook IMG/HREF Tag Code Execution
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
2003 Professional Edition
OSVDB ID: 6079 Microsoft Outlook Remote XML Loading
OSVDB ID: 6217 Microsoft Outlook RTF Embedded Object Security Bypass
2003 Small Business Edition
OSVDB ID: 6079 Microsoft Outlook Remote XML Loading
OSVDB ID: 6217 Microsoft Outlook RTF Embedded Object Security Bypass
2003 Standard Edition
OSVDB ID: 6079 Microsoft Outlook Remote XML Loading
OSVDB ID: 6217 Microsoft Outlook RTF Embedded Object Security Bypass
2003 Student and Teacher Edition
OSVDB ID: 6079 Microsoft Outlook Remote XML Loading
OSVDB ID: 6217 Microsoft Outlook RTF Embedded Object Security Bypass
2003, 2002
OSVDB ID: 6931 Microsoft IE/Outlook Double Null Character DoS
2002 SP3
OSVDB ID: 23903 Microsoft Office Crafted Routing Slip Arbitrary Code Execution
2000 SP3
OSVDB ID: 23903 Microsoft Office Crafted Routing Slip Arbitrary Code Execution
2002 SP2
OSVDB ID: 11423 Microsoft Outlook Malformed Header DoS
2003 SP3
OSVDB ID: 15480 Microsoft Outlook From Header Comma Parsing Failure
2003 SP1
OSVDB ID: 25003 Microsoft Office mailto: Arbitrary File Access
2003 SP2
OSVDB ID: 25003 Microsoft Office mailto: Arbitrary File Access
2007
OSVDB ID: 45031 Microsoft Office RTF File Handling Object Parsing Arbitrary Code Execution
2007 SP1
OSVDB ID: 45031 Microsoft Office RTF File Handling Object Parsing Arbitrary Code Execution
OnePath Watch-list
2003
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
Personal Web Server Watch-list
3.0.2
OSVDB ID: 111 Microsoft Personal Web Server Arbitrary File Access
4.0
OSVDB ID: 111 Microsoft Personal Web Server Arbitrary File Access
OSVDB ID: 3383 Microsoft FrontPage Server Extensions imagemap.exe File Verification
OSVDB ID: 3386 Microsoft FrontPage Server Extensions htimage.exe File Existance Enumeration
2.0
OSVDB ID: 3381 Microsoft FrontPage imagemap.exe Overflow
OSVDB ID: 3382 Microsoft FrontPage Server Extensions imagemap.exe Web Path Disclosure
OSVDB ID: 3384 Microsoft FrontPage htimage.exe Overflow
OSVDB ID: 3385 Microsoft FrontPage Server Extensions htimage.exe Web Path Disclosure
OneNote Watch-list
2003
OSVDB ID: 29430 Microsoft Office Malformed Smart Tag Arbitrary Code Execution
OSVDB ID: 29428 Microsoft Office Malformed Chart Record Unspecified Arbitrary Code Execution
Office WordPerfect Converter Watch-list
5.x
OSVDB ID: 9950 Microsoft Office WordPerfect Converter Overflow
Outlook Express Watch-list
All Versions
OSVDB ID: 2283 Microsoft Exchange OWA Execute Arbitrary Code
OSVDB ID: 3195 Microsoft Exchange OWA REFERER Header XSS
6.0
OSVDB ID: 2974 Microsoft IE/Outlook Temporary Internet File Execution
OSVDB ID: 3053 Microsoft IE Web Folder Script Injection
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
OSVDB ID: 9167 Microsoft Outlook Express BCC: Recipient Information Disclosure
OSVDB ID: 11422 Microsoft Outlook Express S/MIME Parsing Routine Remote Overflow
5.0
OSVDB ID: 3035 Microsoft WebBrowser Control t:video File Execution
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
6
OSVDB ID: 3035 Microsoft WebBrowser Control t:video File Execution
OSVDB ID: 5242 Microsoft IE/Outlook MHTML .chm ITS Protocol Handler Code Execution
OSVDB ID: 6121 Microsoft Outlook Express BASE HREF Web Content Loading
Unknown or Unspecified
OSVDB ID: 3052 Microsoft IE/Outlook CODEBASE PopUp Object Remote Execution
5.5
OSVDB ID: 3053 Microsoft IE Web Folder Script Injection
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
OSVDB ID: 11422 Microsoft Outlook Express S/MIME Parsing Routine Remote Overflow
5.5 SP2
OSVDB ID: 5242 Microsoft IE/Outlook MHTML .chm ITS Protocol Handler Code Execution
6 SP1
OSVDB ID: 5242 Microsoft IE/Outlook MHTML .chm ITS Protocol Handler Code Execution
4.27.3110
OSVDB ID: 5708 Multiple E-mail Client Long File Name MIME Overflow
4.72.2106
OSVDB ID: 5708 Multiple E-mail Client Long File Name MIME Overflow
5
OSVDB ID: 6007 Microsoft IE/Outlook IMG/HREF Tag Code Execution
4.0
OSVDB ID: 6538 Microsoft IE/Outlook ImageMap URL Spoofing
6.0.2800.1123
OSVDB ID: 7778 Microsoft Outlook Window Opener Script Execution
5.02 for Mac
OSVDB ID: 5357 Multiple Microsoft Products for Mac File URL Overflow
Outlook 2002 Connector for IBM Lotus Domino Watch-list
1.0.2411.0
OSVDB ID: 15110 Microsoft Outlook Connector for Lotus Domino Password Policy Bypass
Office XP Watch-list
SP3
SP2
Service Pack 3
Multilingual User Interface Packs

DONATE NOW!

User Status

Quick Searches

Advertisements

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2008 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use