10 matches found
Security Updates for Microsoft Office Viewer Products (December 2018)
The Microsoft Office Viewer Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized variable, which could disclose the contents ...
Security Updates for Microsoft Office Viewer Products (November 2018)
The Microsoft Office Viewer Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully...
CVE-2018-8382
CVE-2018-8382 is an information-disclosure vulnerability in Microsoft Excel family. Connected advisories attribute the root cause to a missing length verification during parsing of workbook streams, enabling a remote attacker to obtain sensitive memory contents. Affected products include Microsof...
Security Updates for Microsoft Office Viewer Products / Office Compatibility Products (August 2018)
The Microsoft Office Viewer / Office Compatibility Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker w...
Security Updates for Microsoft Office Viewer Products (June 2018)
The Microsoft Office Viewer Products are missing a security update. It is, therefore, affected by the following vulnerability : - An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could...
Security Updates for Microsoft Office Viewer Products (April 2018)
The Microsoft Office Viewer Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully...
Office Excel畸形图表子流解析远程代码执行漏洞(MS10-038)
BUGTRAQ ID: 40521 CVE ID: CVE-2010-0823 Excel是微软Office套件中的电子表格工具。 Excel在解析电子表格中的畸形图表子流时存在内存破坏漏洞,用户受骗打开了畸形的Excel文档就会导致执行任意代码。 Microsoft Excel Viewer SP2 Microsoft Excel Viewer SP1 Microsoft Excel 2007 SP2 Microsoft Excel 2007 SP1 Microsoft Excel 2003 SP3 Microsoft Excel 2003 SP2 Microsoft Excel 20...
Microsoft Excel 'SxView' Memory Corruption Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Excel '.xls' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Excel Name Record Array Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Excel富文本值堆溢出漏洞(MS08-014)
BUGTRAQ ID: 28168 CVECAN ID: CVE-2008-0116 Excel是微软Office办公软件家族中的电子表格工具。 Excel在解析BIFF文件格式时存在堆溢出漏洞,成功利用这个漏洞的攻击者可能以当前登录用户的权限执行任意指令。 如果处理了畸形的标签,就可能由用户控制堆分配,在将用户提供的数据拷贝到堆缓冲区时就可以触发这个溢出,覆盖任意内存。 Microsoft Excel Viewer 2003 Microsoft Excel 2003 SP2 Microsoft Excel 2002 SP3 Microsoft Excel 2000 SP3...