Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-4265
HistoryDec 10, 2008 - 2:00 p.m.

CVE-2008-4265

2008-12-1014:00:01
CWE-399
[email protected]
web.nvd.nist.gov
6

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.917

Percentile

99.0%

JSON

Microsoft Office Excel 2000 SP3 allows remote attackers to execute arbitrary code via a crafted Excel spreadsheet that contains a malformed object, which triggers memory corruption during the loading of records from this spreadsheet, aka β€œFile Format Parsing Vulnerability.”

Affected configurations

Nvd
Node
microsoftoffice_excelMatch2000sp3
OR
microsoftoffice_excelMatch2002sp3
OR
microsoftoffice_excelMatch2003sp3
OR
microsoftoffice_excelMatch2007
OR
microsoftoffice_excelMatch2007sp1
AND
microsoft20007_office_system
OR
microsoft20007_office_systemMatchsp1
OR
microsoftofficeMatch2000sp3
OR
microsoftofficeMatch2003sp3
OR
microsoftofficeMatchxpsp3
Node
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac
OR
microsoftoffice_compatibility_pack_for_word_excel_ppt_2007
OR
microsoftoffice_compatibility_pack_for_word_excel_ppt_2007sp1
OR
microsoftoffice_excel_viewer
OR
microsoftoffice_excel_viewerMatch2003
OR
microsoftoffice_excel_viewerMatch2003sp3
OR
microsoftopen_xml_file_format_convertermac
VendorProductVersionCPE
microsoftoffice_excel2000cpe:2.3:a:microsoft:office_excel:2000:sp3:*:*:*:*:*:*
microsoftoffice_excel2002cpe:2.3:a:microsoft:office_excel:2002:sp3:*:*:*:*:*:*
microsoftoffice_excel2003cpe:2.3:a:microsoft:office_excel:2003:sp3:*:*:*:*:*:*
microsoftoffice_excel2007cpe:2.3:a:microsoft:office_excel:2007:*:*:*:*:*:*:*
microsoftoffice_excel2007cpe:2.3:a:microsoft:office_excel:2007:sp1:*:*:*:*:*:*
microsoft20007_office_system*cpe:2.3:a:microsoft:20007_office_system:*:*:*:*:*:*:*:*
microsoft20007_office_systemsp1cpe:2.3:a:microsoft:20007_office_system:sp1:*:*:*:*:*:*:*
microsoftoffice2000cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*
microsoftoffice2003cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*
microsoftofficexpcpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
Rows per page:
1-10 of 181

Related

prion 1
saint 4
cvelist 1
securityvulns 3
cve 1
checkpoint_advisories 2
seebug 1
openvas 2
nessus 1
prion
prion
Format string
2008-12-10 14:00:00
saint
saint
Microsoft Excel TXO and OBJ record parsing memory corruption
2008-12-18 00:00:00
Microsoft Excel TXO and OBJ record parsing memory corruption
2008-12-18 00:00:00
Microsoft Excel TXO and OBJ record parsing memory corruption
2008-12-18 00:00:00
cvelist
cvelist
CVE-2008-4265
2008-12-10 13:33:00
securityvulns
securityvulns
iDefense Security Advisory 12.10.08: Microsoft Excel Malformed Object Memoy Corruption Vulnerability
2008-12-11 00:00:00
Microsoft Security Bulletin MS08-074 - Critical Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070)
2008-12-10 00:00:00
Microsoft Office multiple security vulnerabilities
2008-12-11 00:00:00
cve
cve
CVE-2008-4265
2008-12-10 14:00:01
checkpoint_advisories
checkpoint_advisories
Microsoft Excel TXO and OBJ Records Parsing Memory Corruption (MS08-074; CVE-2008-4265; CVE-2009-0100)
2009-04-14 00:00:00
Microsoft Excel TXO and OBJ Records Parsing Memory Corruption (MS08-074; CVE-2008-4265; CVE-2009-0100)
2009-04-14 00:00:00
seebug
seebug
Microsoft Excelη•Έε½’ε―Ήθ±‘θ§£ζžθΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄žοΌˆMS08-074οΌ‰
2008-12-11 00:00:00
openvas
openvas
Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070)
2008-12-10 00:00:00
Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070)
2008-12-10 00:00:00
nessus
nessus
MS08-074: Microsoft Excel Multiple Method Remote Code Execution (959070)
2008-12-10 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.917

Percentile

99.0%

JSON
Related for NVD:CVE-2008-4265
prion1saint4cvelist1securityvulns3cve1checkpoint_advisories2seebug1openvas2nessus1