PRIOn knowledge basePRION:CVE-2007-0027

HistoryJan 09, 2007 - 10:28 p.m.

Memory corruption

2007-01-0922:28:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.93 High

EPSS

Percentile

99.0%

JSON

Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via malformed IMDATA records that trigger memory corruption.

CPENameOperatorVersion
exceleq2000
exceleq2002
exceleq2003
excel_viewereq2003
officeeq2000 sp3
officeeqxp sp3
officeeq2003 sp2
officeeq2004 mac
workseq2005
workseq2004

Name	Operator	Version
excel	eq	2000
excel	eq	2002
excel	eq	2003
excel_viewer	eq	2003
office	eq	2000 sp3
office	eq	xp sp3
office	eq	2003 sp2
office	eq	2004 mac
works	eq	2005
works	eq	2004

References

securitytracker.com/id?1017487

www.kb.cert.org/vuls/id/749964

www.osvdb.org/31255

www.securityfocus.com/archive/1/457274/100/0/threaded

www.securityfocus.com/bid/21856

www.us-cert.gov/cas/techalerts/TA07-009A.html

www.vupen.com/english/advisories/2007/0103

docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-002

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A119

7.9 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.93 High

EPSS

Percentile

99.0%

JSON

Related for PRION:CVE-2007-0027