Excel@2004 Security Vulnerabilities and Issues — Excel@2004 CVE List

Lucene search

MicrosoftExcel2004

18 matches found

CVE•added 2009/02/25 4:30 p.m.•67 views

CVE-2009-0238

Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1; and Excel in Microsoft Office 2004 and 2008 for Mac allow remote attackers to execute arbitrary code via a craft...

9.3CVSS7.4AI score0.58067EPSS

CVE•added 2007/02/03 1:28 a.m.•61 views

CVE-2007-0671

Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.

9.3CVSS7.5AI score0.62106EPSS

CVE•added 2006/03/14 11:2 p.m.•55 views

CVE-2006-0030

Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via an Excel file with a malformed graphic, which leads to memory corruption.

5.1CVSS7.2AI score0.5975EPSS

CVE•added 2007/05/08 10:19 p.m.•54 views

CVE-2007-1203

Unspecified vulnerability in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, 2004 for Mac, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted set font value in an Excel file, which results in memory corruption.

9.3CVSS7.4AI score0.60754EPSS

CVE•added 2006/06/17 1:18 p.m.•53 views

CVE-2006-3059

Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows remote user-assisted attackers to execute arbitrary code via unspecified vectors. NOTE: this is a different vulnerability than CVE-2006-3086.

9.3CVSS7.3AI score0.75416EPSS

CVE•added 2006/10/10 10:7 p.m.•53 views

CVE-2006-3875

Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted COLINFO record in an XLS file, a different vulnerability than CVE-2006-2387 and CVE-2006-3867.

5.1CVSS7.1AI score0.3985EPSS

CVE•added 2007/08/14 9:17 p.m.•51 views

CVE-2007-3890

Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via a Workspace with a certain index value that triggers memory corruption.

9.3CVSS7.4AI score0.58977EPSS

CVE•added 2006/07/13 9:5 p.m.•50 views

CVE-2006-2388

Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process.

9.3CVSS7.2AI score0.40206EPSS

CVE•added 2007/05/08 10:19 p.m.•48 views

CVE-2007-1214

Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via a crafted AutoFilter filter record in an Excel BIFF8 format XLS file, which triggers memory corruption.

6.8CVSS7.3AI score0.56893EPSS

CVE•added 2007/07/10 10:30 p.m.•47 views

CVE-2007-3030

Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers to execute arbitrary code via a malformed Excel file involving the "denoting [of] the start of a Workspace designation", which results in memory corruption, aka the "Workbook Memory Corruption Vulner...

7.6CVSS7.3AI score0.57804EPSS

CVE•added 2006/03/14 11:2 p.m.•45 views

CVE-2006-0028

Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via a BIFF parsing format file containing malformed BOOLERR records that lead to memory corruption, probably involving invalid...

5.1CVSS7.1AI score0.51677EPSS

CVE•added 2006/07/13 9:5 p.m.•45 views

CVE-2006-1306

Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malformed OBJECT record Vulnerability."

9.3CVSS7.2AI score0.42366EPSS

CVE•added 2006/03/14 11:2 p.m.•44 views

CVE-2006-0029

5.1CVSS7.2AI score0.40426EPSS

CVE•added 2006/07/13 10:5 p.m.•44 views

CVE-2006-1308

Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted FNGROUPCOUNT value.

9.3CVSS7.1AI score0.42366EPSS

CVE•added 2006/10/10 10:7 p.m.•43 views

CVE-2006-3867

Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted Lotus 1-2-3 file, a different vulnerability than CVE-2006-2387 and CVE-2006-3875.

5.1CVSS7.1AI score0.3985EPSS

CVE•added 2006/07/13 10:5 p.m.•41 views

CVE-2006-1301

Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted SELECTION record that triggers memory corruption, a different vulnerability than CVE-2006-1302.

9.3CVSS7.1AI score0.40131EPSS

CVE•added 2006/07/13 9:5 p.m.•41 views

CVE-2006-1302

Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with certain crafted fields in a SELECTION record, which triggers memory corruption, aka "Malformed SELECTION record Vulnerability."

9.3CVSS7.4AI score0.40131EPSS

CVE•added 2006/07/13 10:5 p.m.•38 views

CVE-2006-1309

Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted LABEL record that triggers memory corruption.

9.3CVSS7.2AI score0.37943EPSS