Skip to main content

Office 2012

2 CVEs product

Monthly

CVE-2012-4886 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 53.4%.

RCE Buffer Overflow Microsoft Office 2012
NVD Exploit-DB VulDB
CVSS 2.0
10.0
EPSS
53.4%
Threat
5.1
CVE-2013-3934 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 before 9.1.0.4256, allows remote attackers to execute arbitrary code via a long font name in a WPS file. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 43.6%.

Buffer Overflow Microsoft RCE Office 2012 Writer 2012
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
43.6%
Threat
4.7
EPSS 53% 5.1 CVSS 10.0
CRITICAL POC THREAT Emergency

Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 53.4%.

RCE Buffer Overflow Microsoft +1
NVD Exploit-DB VulDB
EPSS 44% 4.7 CVSS 9.3
CRITICAL POC THREAT Emergency

Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 before 9.1.0.4256, allows remote attackers to execute arbitrary code via a long font name in a WPS file. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 43.6%.

Buffer Overflow Microsoft RCE +2
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy