8 matches found
Microsoft Excel TXO and OBJ Records Parsing Memory Corruption (MS08-074; CVE-2008-4265; CVE-2009-0100)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error in Microsoft Excel when loading Excel records. An attacker can exploit this flaw to execute arbitrary code ...
Microsoft Excel TXO and OBJ Records Parsing Memory Corruption (MS08-074; CVE-2008-4265; CVE-2009-0100)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error in Microsoft Excel when loading Excel records. An attacker can exploit this flaw to execute arbitrary code ...
Microsoft Excel TXO and OBJ record parsing memory corruption
Added: 12/18/2008 CVE: CVE-2008-4265 BID: 32618 OSVDB: 50556 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user opens an Excel...
Microsoft Excel TXO and OBJ record parsing memory corruption
Added: 12/18/2008 CVE: CVE-2008-4265 BID: 32618 OSVDB: 50556 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user opens an Excel...
iDefense Security Advisory 12.10.08: Microsoft Excel Malformed Object Memoy Corruption Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 12.09.08 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 09, 2008 I. BACKGROUND Excel is the spreadsheet application included with Microsoft Corp.'s Office productivity software suite. More information is availabl...
Microsoft Excel畸形对象解析远程代码执行漏洞(MS08-074)
BUGTRAQ ID: 32618,32622,32621 CVECAN ID: CVE-2008-4265,CVE-2008-4266,CVE-2008-4264 Excel是微软Office套件中的电子表格工具。 Excel在解析记录和公式时存在多个内存破坏漏洞,在验证NAME记录中的索引值时存在栈破坏漏洞。如果用户打开带有畸形对象的特制Excel文件,这些漏洞可能允许远程执行代码。成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Excel Viewer 2003 SP3...
CVE-2008-4265
CVE-2008-4265 affects Microsoft Office Excel 2000 SP3, where parsing certain TXO/OBJ records can trigger a memory corruption vulnerability that permits remote code execution when a specially crafted Excel file is opened. The root cause is memory corruption during loading of records from the sprea...
MS08-074: Microsoft Excel Multiple Method Remote Code Execution (959070)
The remote host is running a version of Microsoft Excel that is subject to various flaws that may allow arbitrary code to be run. An attacker may use this to execute arbitrary code on this host. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it...