4 matches found
MS08-014 / MS08-016: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (949029 / 949030) (Mac OS X)
The remote Mac OS X host is running a version of Microsoft Office that is affected by several vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted Excel or Office file, these issues could be leveraged to execute arbitrary code subject to the user'...
Microsoft Excel数据验证记录堆内存破坏漏洞(MS08-014)
BUGTRAQ ID: 28094 CVECAN ID: CVE-2008-0111 Excel是微软Office办公软件家族中的电子表格工具。 Excel在处理BIFF8格式电子表格文件中的DVAL记录时存在漏洞,如果将该记录的某些字段设置为无效值的话,则用户打开该文件时就会触发堆内存破坏或导致执行任意指令。 Microsoft Excel Viewer 2003 Microsoft Excel 2007 Microsoft Excel 2003 SP2 Microsoft Excel 2002 SP3 Microsoft Excel 2000 SP3 Microsoft Office...
[Full-disclosure] iDefense Security Advisory 03.11.08: Microsoft Excel DVAL Heap Corruption Vulnerability
iDefense Security Advisory 03.11.08 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 11, 2008 I. BACKGROUND Microsoft Excel is the spreadsheet application that is included with Microsoft Corp's Office productivity software suite. More information is available at the following website...
CVE-2008-0111
CVE-2008-0111 : A remote code execution vulnerability in Microsoft Excel 2000 SP3 through 2007, Excel Viewer 2003, Compatibility Pack, and Office 2004 for Mac exists due to improper validation of data in BIFF8 data validation records when loading files. Exploitation requires a user to open a craf...