Shodan
Vulnerabilities
Vulnerable Software
Microsoft:  >> Publisher  Security Vulnerabilities
CVE-2013-1328
Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers incorrect pointer handling, aka "Publisher Pointer Handling Vulnerability."
CVSS Score
9.3
EPSS Score
0.59
Published
2013-05-15
CVE-2013-1329
Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers a buffer underflow, aka "Publisher Buffer Underflow Vulnerability."
CVSS Score
9.3
EPSS Score
0.59
Published
2013-05-15
CVE-2011-1508
Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, does not properly manage memory allocations for function pointers, which allows user-assisted remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Function Pointer Overwrite Vulnerability."
CVSS Score
9.3
EPSS Score
0.281
Published
2011-12-14
CVE-2011-3410
Array index error in Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect handling of values in memory, aka "Publisher Out-of-bounds Array Index Vulnerability."
CVSS Score
9.3
EPSS Score
0.631
Published
2011-12-14
CVE-2011-3411
Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect handling of values in memory, aka "Publisher Invalid Pointer Vulnerability."
CVSS Score
9.3
EPSS Score
0.532
Published
2011-12-14
CVE-2011-3412
Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect memory handling, aka "Publisher Memory Corruption Vulnerability."
CVSS Score
9.3
EPSS Score
0.532
Published
2011-12-14
CVE-2010-3954
Microsoft Publisher 2002 SP3, 2003 SP3, and 2010 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Publisher file, aka "Microsoft Publisher Memory Corruption Vulnerability."
CVSS Score
9.3
EPSS Score
0.61
Published
2010-12-16
CVE-2010-3955
pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3 does not properly perform array indexing, which allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Array Indexing Memory Corruption Vulnerability."
CVSS Score
9.3
EPSS Score
0.583
Published
2010-12-16
CVE-2010-2570
Heap-based buffer overflow in pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3, 2003 SP3, 2007 SP2, and 2010 allows remote attackers to execute arbitrary code via a crafted Publisher file that uses an old file format, aka "Heap Overrun in pubconv.dll Vulnerability."
CVSS Score
9.3
EPSS Score
0.621
Published
2010-12-16
CVE-2010-2571
Array index error in pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher 97 file, aka "Memory Corruption Due To Invalid Index Into Array in Pubconv.dll Vulnerability."
CVSS Score
9.3
EPSS Score
0.61
Published
2010-12-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved