NVD disclosure day

Published threat advisories for November 10, 2010

CVE-2010-3333

Microsoft Office RTF Code Execution Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in Microsoft Office and Open XML File Format Converter for Mac allows arbitrary code execution when processing specially crafted RTF data. This presents a business risk as attackers could exploit this to gain control of affected systems. Organizations should apply vendor updates to mitigate this risk.

NVD published: November 10, 2010 • CISA KEV

CVE advisoryKnown Exploit

CVE-2010-2572

Microsoft PowerPoint Document Parsing Buffer Overflow

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

Microsoft PowerPoint contains a buffer overflow vulnerability. Opening a crafted document may allow attackers to execute arbitrary code, potentially impacting affected systems' confidentiality, integrity, and availability.

NVD published: November 10, 2010 • CISA KEV