4 matches found
Microsoft Excel Malformed OBJECT Record Code Execution (MS06-037; CVE-2006-1306)
There exists an arbitrary index pointer code execution vulnerability in Microsoft Excel. The flaw is caused by an insufficient check of a malformed OBJECT Record in an Excel file. An attacker can exploit this vulnerability to inject and execute arbitrary code in the security context of the...
CVE-2006-1306
CVE-2006-1306 is a Microsoft Excel remote code execution vulnerability in the Malformed OBJECT record. A crafted .xls file can cause an attacker-controlled function pointer to execute arbitrary code when opened, enabling code execution in the user’s context. The issue affects Office/Excel 2000–20...
[Full-disclosure] Microsoft Excel Array Index Error Remote Code Execution
Microsoft Excel Array Index Error Remote Code Execution By Sowhat of Nevis Labs 2006.07.11 http://www.nevisnetworks.com http://secway.org/advisory/AD20060711.txt Vendor Microsoft Inc. Products affected: Microsoft Office 2000 Service Pack 3 Microsoft Office XP Service Pack 3 Microsoft Office 2003...
Microsoft Security Bulletin MS06-037 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (917285)
Microsoft Security Bulletin MS06-037 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution 917285 Published: July 11, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Excel Impact of Vulnerability: Remote Code Execution Maximum Severity Rating:...