Friday, December 13, 2013

CPE: McAfee AudioParasitic: Episode 45: M$ sec bulletin

length: 00:10:07
the month of Remote Code Execution

 vulnerabilities in Excel that could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system.

MS08-058: five privately reported vulnerabilities and one publicly disclosed vulnerability. The vulnerabilities could allow information disclosure or remote code execution if a user views a specially crafted Web page using Internet Explorer.
Window Location Property Cross-Domain Vulnerability - CVE-2008-2947
HTML Element Cross-Domain Vulnerability - CVE-2008-3472
Event Handling Cross-Domain Vulnerability - CVE-2008-3473
Cross-Domain Information Disclosure Vulnerability - CVE-2008-3474
Uninitialized Memory Corruption Vulnerability - CVE-2008-3475
HTML Objects Memory Corruption Vulnerability - CVE-2008-3476

Labels: ,


Post a Comment

Subscribe to Post Comments [Atom]

<< Home