CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
99.0%
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via malformed IMDATA records that trigger memory corruption.
securitytracker.com/id?1017487
www.kb.cert.org/vuls/id/749964
www.osvdb.org/31255
www.securityfocus.com/archive/1/457274/100/0/threaded
www.securityfocus.com/bid/21856
www.us-cert.gov/cas/techalerts/TA07-009A.html
www.vupen.com/english/advisories/2007/0103
docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-002
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A119