Tony Loi

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-868L devices with Singapore StarHub firmware versions prior to v1.21SHCb03 **Description** The issue allows remote attackers to execute arbitrary code on the affected devices. This is related to the authentication.cgi component. **Recommendations** For D-Link DIR-868L devices with Singapore StarHub firmware versions prior to v1.21SHCb03, update to version v1.21SHCb03 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office software (affected versions not specified) **Description** The issue is caused by a buffer overflow in memory, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption) by using a specially crafted document. An attacker who successfully exploits the issue could run arbitrary code in the context of the current user. If the current user has administrative rights, the attacker could take control of the affected system, install programs, view, change, or delete data, or create new accounts with full user rights. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.