43 matches found
EUVD-2000-0276
Malware in sbrugna...
Microsoft Excel TXO and OBJ record parsing memory corruption
Added: 12/18/2008 CVE: CVE-2008-4265 BID: 32618 OSVDB: 50556 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user opens an Excel...
Format string
Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote...
Format string
Microsoft Office Excel 2000 SP3 allows remote attackers to execute arbitrary code via a crafted Excel spreadsheet that contains a malformed object, which triggers memory corruption during the loading of records from this spreadsheet, aka "File Format Parsing Vulnerability."...
Microsoft Excel日历对象验证远程代码执行漏洞(MS08-057)
BUGTRAQ ID: 31702 CVECAN ID: CVE-2008-3477 Excel是微软Office办公套件中的电子表格工具。 Excel处理VBA性能缓存的方式中存在一个远程执行代码漏洞。如果用户在VBA性能缓存中打开一个特制Excel文件,该漏洞可能触发堆溢出、内存破坏、无效数组索引或整数溢出等。成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Excel 2003 SP3 Microsoft Excel 2003 SP2 Microsoft Excel 2002 SP3...
MS00-049:Microsoft Office 脚本允许远程保存恶意文件
如果一个Web站点在web页面中嵌入恶意脚本,它调用一个Excel 2000或者PowerPoint文件, 当用户访问这个站点时可能导致一个远程文件可能是恶意的被保存到该用户的硬盘上。 Microsoft Excel 2000 Microsoft PowerPoint 2000 Microsoft PowerPoint 97.0 - Microsoft Windows 98 - Microsoft Windows 95 - Microsoft Windows NT 4.0 - Microsoft Windows NT 2000 微软已经提供了补丁程序: Microsoft Excel...
Input validation
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted data validation records, aka "Excel Data Validation Record Vulnerability."...
Memory corruption
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office for Mac 2004 allows user-assisted remote attackers to execute arbitrary code via crafted Style records that trigger memory corruption...
CVE-2008-0114
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office for Mac 2004 allows user-assisted remote attackers to execute arbitrary code via crafted Style records that trigger memory corruption...
CVE-2008-0112
Unspecified vulnerability in Microsoft Excel 2000 SP3, and Office for Mac 2004 and 2008 allows user-assisted remote attackers to execute arbitrary code via a crafted .SLK file that is not properly handled when importing the file, aka "Excel File Import Vulnerability."...
Input validation
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted macros, aka "Macro Validation Vulnerability," a different vulnerability than CVE-2007-3490...
PT-2008-1736 · Microsoft · Office Excel +2
Name of the Vulnerable Software and Affected Versions: Microsoft Excel versions 2000 SP3 through 2003 SP2 Microsoft Excel Viewer 2003 Microsoft Office 2004 for Mac Description: The issue allows user-assisted remote attackers to execute arbitrary code via crafted macros. A remote code execution...
Microsoft Excel Macro Validation Uninitialized Variable Manipulation Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker may exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft Excel...
Microsoft Excel Worksheet Index Value Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file .xls. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Excel 2000/2003 Sheet Name Vulnerability PoC
No description provided by source. Vuln Exposed by: ZhenHan.Liu Team: Ph4nt0m Security Team http://www.ph4nt0m.org Tested on: Full Patched Excel 2003 Sp2, CN http://www.milw0rm.com/sploits/06272007-2670.zip sebug.net...
Microsoft Excel 2000/2003 Sheet Name Vulnerability PoC
Exploit for unknown platform in category dos / poc ====================================================== Microsoft Excel 2000/2003 Sheet Name Vulnerability PoC ====================================================== Tested on: Full Patched Excel 2003 Sp2, CN http://www.inj3ct0r.com/sploits/6415.z...
Microsoft Excel 2000/2003 - Sheet Name (PoC)
Vuln Exposed by: ZhenHan.Liu Team: Ph4nt0m Security Team http://www.ph4nt0m.org Tested on: Full Patched Excel 2003 Sp2, CN https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/4121.zip 06272007-2670.zip milw0rm.com 2007-06-27...
Microsoft Excel Filter记录远程代码执行漏洞(MS07-023)
Microsoft Excel是Office套件中的电子表格工具。 Excel在处理Excel BIFF8格式电子表格文件中的AutoFilter记录时存在输入验证错误,如果用户受骗打开了包含有畸形过滤记录的特制文档的话,就可能导致无效的内存访问,在用户系统上执行任意代码。 Microsoft Excel Viewer 2003 Microsoft Excel 2003 SP2 Microsoft Excel 2002 SP3 Microsoft Excel 2000 SP3 Microsoft Office 2004 for Mac 临时解决方法: 不要打开不可信任来源的Excel文档...
Microsoft Excel BIFF记录远程栈溢出漏洞(MS07-023)
Microsoft Excel是Office套件中的电子表格工具。 Excel在解析BIFF文件格式时存在栈溢出漏洞,在处理畸形的Named Graph记录时可能未经检查便将用户提供的数据拷贝到了栈中,触发这个溢出,导致在用户系统上执行任意指令。 Microsoft Excel Viewer 2003 Microsoft Excel 2003 SP2 Microsoft Excel 2002 SP3 Microsoft Excel 2000 SP3 临时解决方法: 不要打开不可信任来源的Excel文档。 厂商补丁: Microsoft ---------...
Microsoft Excel Set Font Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of a victim user running the application. A successful exploit will result in the compromise of the application and may aid in further attacks...