Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2008-02-13	CVE-2007-6701	Buffer Errors vulnerability in Novell Client 4.91 Multiple stack-based buffer overflows in the Spooler service (nwspool.dll) in Novell Client 4.91 SP4 for Windows allow remote attackers to execute arbitrary code via long arguments to multiple unspecified RPC functions, aka Novell bug 287919, a different vulnerability than CVE-2007-2954. network low complexity microsoft novell CWE-119 critical	10.0
2008-02-13	CVE-2008-0103	Resource Management Errors vulnerability in Microsoft Office Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Office document that contains a malformed object, related to a "memory handling error," aka "Microsoft Office Execution Jump Vulnerability." network microsoft CWE-399 critical	9.3
2008-02-12	CVE-2008-0109	Resource Management Errors vulnerability in Microsoft Office and Word Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Office Word Viewer 2003 allows remote attackers to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file, which triggers length calculation errors and memory corruption. network microsoft CWE-399 critical	9.3
2008-02-12	CVE-2008-0108	Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Office and Works Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length Vulnerability." network microsoft CWE-119 critical	9.3
2008-02-12	CVE-2008-0105	Improper Input Validation vulnerability in Microsoft Office and Works Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section header index table information, aka "Microsoft Works File Converter Index Table Vulnerability." network microsoft CWE-20 critical	9.3
2008-02-12	CVE-2008-0104	Code Injection vulnerability in Microsoft Office and Publisher Unspecified vulnerability in Microsoft Office Publisher 2000, 2002, and 2003 SP2 allows remote attackers to execute arbitrary code via a crafted .pub file, aka "Publisher Memory Corruption Vulnerability." network microsoft CWE-94 critical	9.3
2008-02-12	CVE-2008-0102	Resource Management Errors vulnerability in Microsoft Publisher 2000/2002/2003 Unspecified vulnerability in Microsoft Office Publisher 2000, 2002, and 2003 SP2 allows remote attackers to execute arbitrary code via a crafted .pub file, related to invalid "memory values," aka "Publisher Invalid Memory Reference Vulnerability." network low complexity microsoft CWE-399 critical	10.0
2008-02-12	CVE-2008-0080	Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Webdav Mini-Redirector Heap-based buffer overflow in the WebDAV Mini-Redirector in Microsoft Windows XP SP2, Server 2003 SP1 and SP2, and Vista allows remote attackers to execute arbitrary code via a crafted WebDAV response. network low complexity microsoft CWE-119 critical	10.0
2008-02-12	CVE-2008-0078	Code Injection vulnerability in Microsoft Activex, IE and Internet Explorer Unspecified vulnerability in an ActiveX control (dxtmsft.dll) in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via a crafted image, aka "Argument Handling Memory Corruption Vulnerability." network microsoft CWE-94 critical	9.3
2008-02-12	CVE-2008-0076	Code Injection vulnerability in Microsoft IE and Internet Explorer Unspecified vulnerability in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via crafted HTML layout combinations, aka "HTML Rendering Memory Corruption Vulnerability." network microsoft CWE-94 critical	9.3