Lucene search
+L

216 matches found

Symantec
Symantec
added 2010/06/08 12:0 a.m.18 views

Microsoft Excel 'ExternName' Record Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel '.xls' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running...

7.9AI score
Exploits0Affected Software4
Prion
Prion
added 2010/03/10 10:30 p.m.18 views

Remote code execution

Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers...

9.3CVSS8.3AI score0.25692EPSS
Exploits1References6Affected Software4
Prion
Prion
added 2010/03/10 10:30 p.m.26 views

Format string

Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Microsoft Office Excel DbOrParamQry Record Parsing...

9.3CVSS8AI score0.21221EPSS
Exploits5References4Affected Software4
CVE
CVE
added 2010/03/10 10:0 p.m.85 views

CVE-2010-0263

CVE-2010-0263 concerns Microsoft Office Excel XLSX File Parsing Code Execution. The vulnerability arises from insufficient validation of ZIP headers during decompression of Open XML XLSX documents, enabling remote code execution via a crafted file that accesses uninitialized memory. Affected soft...

9.3CVSS7.8AI score0.25692EPSS
Exploits1References6Affected Software6
securityvulns
securityvulns
added 2010/03/10 12:0 a.m.53 views

ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability

ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-025 March 9, 2010 -- CVE ID: CVE-2010-0263 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Excel -- Vulnerability Details: This...

9.3CVSS1.9AI score0.25692EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2010/03/10 12:0 a.m.6 views

PT-2010-2056 · Microsoft · Office Excel Viewer +3

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel versions 2002 SP3, 2003 SP3, 2007 SP1 and SP2 Office 2004 and 2008 for Mac Open XML File Format Converter for Mac Office Excel Viewer versions SP1 and SP2 Office Compatibility Pack for Word, Excel, and PowerPoint 2007...

9.3CVSS7.9AI score0.6095EPSS
Exploits1References9
Zero Day Initiative
Zero Day Initiative
added 2010/03/09 12:0 a.m.46 views

Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the decompression of XLSX files. The XL...

10CVSS4.4AI score0.25692EPSS
Exploits1References1
Symantec
Symantec
added 2010/03/09 12:0 a.m.21 views

Microsoft Excel XLSX File Parsing Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing victims to open a specially crafted 'XLXS' Excel file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...

0.5AI score
Exploits0References1Affected Software3
Prion
Prion
added 2009/11/11 8:30 p.m.19 views

Heap overflow

Heap-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via a spreadsheet containing a malformed Binary File Format aka BIFF record that triggers memory corruption, ak...

9.3CVSS8.2AI score0.28934EPSS
Exploits1References4Affected Software4
Prion
Prion
added 2009/11/11 8:30 p.m.22 views

Memory corruption

Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via a spreadsheet containing a malformed object that triggers memory corruption, related to "loading Excel records," aka "Excel Document Parsi...

9.3CVSS7.8AI score0.24879EPSS
Exploits1References4Affected Software4
Prion
Prion
added 2009/11/11 8:30 p.m.17 views

Memory corruption

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allow...

9.3CVSS7.8AI score0.24879EPSS
Exploits0References4Affected Software4
Prion
Prion
added 2009/11/11 8:30 p.m.29 views

Format string

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 do not...

9.3CVSS7.8AI score0.25777EPSS
Exploits0References4Affected Software4
Cvelist
Cvelist
added 2009/11/11 8:0 p.m.32 views

CVE-2009-3133

Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via a spreadsheet containing a malformed object that triggers memory corruption, related to "loading Excel records," aka "Excel Document Parsi...

7.5AI score0.24879EPSS
Exploits1References4
Prion
Prion
added 2009/11/11 7:30 p.m.26 views

Memory corruption

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows...

9.3CVSS7.8AI score0.85731EPSS
Exploits10References10Affected Software4
Prion
Prion
added 2009/11/11 7:30 p.m.24 views

Memory corruption

Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, Open XML File Format Converter for Mac, and Office Excel Viewer 2003 SP3 do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Excel Cache...

9.3CVSS7.8AI score0.25075EPSS
Exploits1References4Affected Software4
CVE
CVE
added 2009/11/11 7:0 p.m.1014 views

CVE-2009-3129

CVE-2009-3129 concerns a remote-code-execution vulnerability in Microsoft Office Excel and related components caused by a FEATHEADER record with an invalid cbHdrData size that affects a pointer offset. Affected products include Excel 2002 SP3, 2003 SP3, 2007 SP1/SP2, Open XML File Format Converte...

9.3CVSS7.5AI score0.85731EPSS
In wildExploits10References11Affected Software4
CVE
CVE
added 2009/11/11 7:0 p.m.91 views

CVE-2009-3127

CVE-2009-3127 (Excel Cache Memory Corruption) is a remote code execution vulnerability in Microsoft Office Excel variants: Excel 2002 SP3, 2003 SP3, 2004/2008 for Mac, Open XML File Format Converter for Mac, and Excel Viewer 2003 SP3. It stems from improper parsing of the Excel file format, allow...

9.3CVSS7.3AI score0.25075EPSS
Exploits1References4Affected Software5
seebug.org
seebug.org
added 2009/11/11 12:0 a.m.34 views

Microsoft Excel 'SxView'内存破坏远程代码执行漏洞(MS09-067)

Bugraq ID: 36944 CVE ID:CVE-2009-3128 Microsoft Excel是一款微软开发的电子表格处理程序。 Microsoft Office Excel存在一个远程代码执行漏洞,如果用户打开一个特殊构建的包含畸形记录对象的Excel文件可允许远程代码执行。 成功利用此漏洞允许完全控制受影响系统,攻击者成功利用此漏洞可以以内核权限安装程序;查看,更改或删除数据等。 Microsoft Open XML File Format Converter for Mac 0 Microsoft Office Excel Viewer 2003 0 Microsoft...

9.3CVSS6.3AI score0.24879EPSS
Exploits1
Symantec
Symantec
added 2009/11/10 12:0 a.m.14 views

Microsoft Word Record Parsing Remote Stack Buffer Overflow Vulnerability

Description Microsoft Word is prone to a remote stack-buffer overflow vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Word '.doc' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running th...

1AI score
Exploits0References1Affected Software3
Symantec
Symantec
added 2009/11/10 12:0 a.m.32 views

Microsoft Excel 'PivotTable' Cache Record Memory Corruption Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Excel '.xls' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...

0.2AI score
Exploits0Affected Software4
Rows per page
Query Builder