Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2021/04/27 12:0 a.m.2 views

The vulnerability affects implementations of syntactic analysis for XLS file formats in programs from Microsoft Office, Microsoft Office Web Apps Server, Microsoft Excel, Microsoft 365 Apps for Enterprise, and Microsoft Office Online Server. This allows attackers to execute arbitrary code.

The vulnerability of the XLS file syntax analysis implementation in Microsoft Office programs, such as Microsoft Office Web Apps Server, Microsoft Excel, Microsoft 365 Apps for Enterprise, and Microsoft Office Online Server, is related to the use of memory after it is released. Exploiting this...

7.8CVSS7.6AI score0.03138EPSS
Exploits0References6
Talos
Talos
added 2017/09/11 12:0 a.m.57 views

FreeXL BIFF Dimension Marker Code Execution Vulnerability

Summary An exploitable heap-based buffer overflow vulnerability exists in the readlegacybiff function of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability. Tested...

8.8CVSS8.9AI score0.03313EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2015/05/18 12:0 a.m.8 views

Microsoft Excel Malformed Chart Sheet Substream Memory Corruption (MS10-038) - Ver2 (CVE-2010-0823)

Microsoft Excel is a spreadsheet application released by the Microsoft Corporation. Its native file format is the Binary Interchange File Format BIFF, which is available is several versions. An Excel file contains information about the various spreadsheets that form an Excel workbook, the data an...

9.3CVSS2.4AI score0.20463EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2010/10/12 12:0 a.m.6 views

Microsoft Excel Corrupted Table Records Code Execution (MS10-080; CVE-2010-3232)

Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. A memory corruption vulnerability has been identified in Microsoft...

9.3CVSS6.7AI score0.21413EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/10/12 12:0 a.m.7 views

Microsoft Excel Ghost Record Type Parsing Code Execution (MS10-080; CVE-2010-3242)

Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. A memory corruption vulnerability has been identified in Microsoft...

9.3CVSS6.8AI score0.21413EPSS
Exploits1
Rows per page
Query Builder