2 matches found
Microsoft Excel fails to properly perform range validation when parsing document files
Overview Microsoft Excel contains an error in range validation, which may allow a remote unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Excel fails to properly validate ranges in data files. When a file with a malformed range is opened in Excel,...
CVE-2005-4131
CVE-2005-4131 affects Microsoft Excel 2000, 2002 and 2003 (Office 2000 SP3 and related packages). The vulnerability stems from parsing a malformed named range/range data in Excel files, which can cause memory corruption in a call to msvcrt.memmove. An attacker could leverage this via a specially ...