Pedro Gallegos

**Name of the Vulnerable Software and Affected Versions** PostgreSQL (affected versions not specified) **Description** A flaw in PostgreSQL allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing specially crafted data. This enables the execution of arbitrary code on the target system, allowing users to write arbitrary bytes to memory and extensively read the server's memory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TimescaleDB versions 1.x and 2.x before 2.5.2 **Description** The issue allows privilege escalation during extension installation. An unprivileged user can precreate objects using commands like `CREATE` which will be used by the installer executing as Superuser. To exploit this, an unprivileged user needs to create objects in a database and then have a Superuser install TimescaleDB into their database. **Recommendations** For versions 1.x and 2.x before 2.5.2, update to version 2.5.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows versions prior to the fixed version, including Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1, Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 **Description** The issue arises due to insufficient validation of file copy destinations by the Windows Shell, allowing an attacker to execute arbitrary code in the context of the current user. This can be achieved by exploiting the vulnerability with specially crafted content. **Recommendations** For Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1, Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows versions 1607, 1703, and Windows Server 2016 **Description** The issue is related to an elevation of privilege due to the Windows Input Method Editor (IME) improperly handling parameters in a method of a DCOM class. This allows attackers to affect the system. **Recommendations** For Microsoft Windows versions 1607, 1703, and Windows Server 2016, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook (affected versions not specified) Microsoft Office (affected versions not specified) **Description** The issue is related to improper data handling and input validation in Microsoft Office, which can lead to remote code execution. This could allow an attacker to gain control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The exploitation requires convincing a user to open a specially crafted Office document. **Recommendations** For Microsoft Outlook, update to a version that properly validates input before loading dynamic link library (DLL) files. For Microsoft Office, ensure that users are cautious when opening Office documents from untrusted sources, and consider restricting user rights on the system to minimize the impact of a potential exploit. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook (affected versions not specified) **Description** The issue is caused by a buffer overflow in memory, allowing a remote attacker to execute arbitrary code using specially crafted email messages. This could enable an attacker to run code as the logged-on user. If the user has administrative rights, the attacker could gain control of the system, install programs, view, change, or delete data, or create new accounts with full user rights. Users with limited user rights may be less affected than those with administrative rights. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office (affected versions not specified) **Description** A security feature bypass issue exists due to improper handling of file formats. This issue does not allow arbitrary code execution on its own but can be exploited in conjunction with another vulnerability, such as a remote code execution vulnerability, to run arbitrary code. An attacker would need to convince a user to open a specially crafted file with an affected version of Microsoft Office software. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.