Download
| Alert*
|
oval:org.secpod.oval:def:18551
Microsoft Excel 2002 SP3 is installed oval:org.mitre.oval:def:473 The application Microsoft Excel 2002 is installed. oval:org.mitre.oval:def:481 Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted Lotus 1-2-3 file, a different vulnerability than CVE-2006-2387 and CVE-2006-3875. oval:org.mitre.oval:def:486 Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted COLINFO record in an XLS file, a different vulnerability than CVE-2006-2387 and CVE-2006-3867. oval:org.mitre.oval:def:431 Buffer overflow in certain Asian language versions of Microsoft Excel might allow user-assisted attackers to execute arbitrary code via a crafted STYLE record in a spreadsheet that triggers the overflow when the user attempts to repair the document or selects the "Style" option, as demonstrated by n ... oval:org.mitre.oval:def:537 Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows remote user-assisted attackers to execute arbitrary code via unspecified vectors. NOTE: this is a different vulnerability than CVE-2006-3086. oval:org.mitre.oval:def:379 Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with certain crafted fields in a SELECTION record, which triggers memory corruption, aka "Malformed SELECTION record Vulnerability." oval:org.mitre.oval:def:2064 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via a crafted AutoFilter filter record in an Excel BIFF8 format XLS file, which triggers memory corruption. oval:org.mitre.oval:def:243 Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted FNGROUPCOUNT value. oval:org.mitre.oval:def:950 Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malformed OBJECT record Vulnerability." oval:org.mitre.oval:def:557 Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted SELECTION record that triggers memory corruption, a different vulnerability than CVE-2006-1302. oval:org.mitre.oval:def:545 Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted COLINFO record, which triggers the overflow during a "data filling operation." oval:org.mitre.oval:def:752 Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted LABEL record that triggers memory corruption. oval:org.mitre.oval:def:234 Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process. oval:org.mitre.oval:def:1102 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via a malformed string, aka "Excel Malformed String Vulnerability." oval:org.mitre.oval:def:323 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via an Excel file with an out-of-range Column field in certain BIFF8 record types, which references arbitrary memory. oval:org.mitre.oval:def:753 Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via a BIFF8 spreadsheet with a PALETTE record that contains a large number of entries. oval:org.mitre.oval:def:119 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via malformed IMDATA records that trigger memory corruption. oval:org.mitre.oval:def:1971 Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers to execute arbitrary code via a .XLS BIFF file with a malformed Named Graph record, which results in memory corruption. oval:org.mitre.oval:def:2014 Unspecified vulnerability in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, 2004 for Mac, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted set font value in an Excel file, which results in memory corruption. oval:org.mitre.oval:def:2123 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and Office Excel 2007 does not properly validate version information, which allows user-assisted remote attackers to execute arbitrary code via a crafted Excel file, aka "Calculation Error Vulnerability". oval:org.mitre.oval:def:2029 Unspecified vulnerability in Microsoft Excel 2002 SP3 and 2003 SP2 allows user-assisted remote attackers to execute arbitrary code via a malformed Excel file containing multiple active worksheets, which results in memory corruption. oval:org.mitre.oval:def:1709 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers to execute arbitrary code via a malformed Excel file involving the "denoting [of] the start of a Workspace designation", which results in memory corruption, aka the "Workbook Memory Corruption Vulnera ... oval:org.mitre.oval:def:2149 Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via a Workspace with a certain index value that triggers memory corruption. oval:org.mitre.oval:def:570 Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, Excel Viewer 2003, and Microsoft Works Suite 2004 through 2006 allows user-assisted attackers to execute arbitrary code via a crafted DATETIME record in an XLS file, a different vulnerability than CVE-2006-3867 ... oval:org.mitre.oval:def:768 Microsoft Excel 2000, 2002, 2003, Viewer 2003, Office 2004 for Mac, and Office v.X for Mac does not properly handle certain opcodes, which allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file, which results in an "Improper Memory Access Vulnerability." NOTE: an ear ... oval:org.mitre.oval:def:7616 Microsoft Excel 2002 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Extra Out of Boundary Record Parsing Vulnerability." oval:org.mitre.oval:def:7555 Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Formula Substream Memory Corruption Vulnerability." oval:org.secpod.oval:def:1191 The host is installed with Microsoft Office Excel 2002 and is prone to remote code execution vulnerability. A flaw is present in the application, where it is not able to handle special crafted excel files. Successful exploitation allows remote attacker to take complete control of the affected system ... oval:org.secpod.oval:def:1190 The host is installed with Microsoft Office Excel 2002 and is prone to remote code execution vulnerability. A flaw is present in the application, where it is not able to handle special crafted excel files. Successful exploitation allows remote attacker to take complete control of the affected system ... oval:org.secpod.oval:def:1192 The host is installed with Microsoft Office Excel 2002 and is prone to remote code execution vulnerability. A flaw is present in the application, where it is not able to handle special crafted excel files. Successful exploitation allows remote attacker to take complete control of the affected system ... oval:org.secpod.oval:def:1184 The host is missing an important security update according to Microsoft security bulletin, MS11-045. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle a specially crafted Excel file. Successful exploitation allows remote attacker ... oval:org.secpod.oval:def:1186 The host is installed with Microsoft Excel 2002 or 2003 or 2007 or 2010 or Excel Viewer 2007 or Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and is prone to arbitrary code execution vulnerability. A flaw is present in the applications which is caused when Mic ... oval:org.secpod.oval:def:1185 The host is installed with Microsoft Office Excel 2002 or 2003 or 2007 or 2010 or Excel Viewer or Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and is prone to remote code execution vulnerability. A flaw is present in the application when Microsoft Excel does ... oval:org.secpod.oval:def:1188 The host is installed with Microsoft Office Excel 2002 and is prone to remote code execution vulnerability. A flaw is present in the application, where it is not able to handle special crafted excel files. Successful exploitation allows remote attacker to take complete control of the affected system ... oval:org.secpod.oval:def:1187 The host is installed with Microsoft Office Excel 2002 or 2003 or 2007 or 2010 or Excel Viewer or Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and is prone to remote code execution vulnerability. A flaw is present in the application, where it is not able to h ... oval:org.secpod.oval:def:1189 The host is installed with Microsoft Office Excel 2002 or 2003 or 2007 or Excel Viewer or Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and is prone to remote code execution vulnerability. A flaw is present in the application, where it is not able to handle sp ... oval:org.mitre.oval:def:8617 Microsoft Office Excel 2002 SP3 does not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Microsoft Office Excel Record Memory Corruption Vulnerability." oval:org.mitre.oval:def:7888 Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Microsoft Office Excel DbOrParamQry Record Parsing Vulnerabil ... oval:org.mitre.oval:def:7475 Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Excel Record Parsing Memory Corruption Vulnerability." oval:org.secpod.oval:def:1560 The host is missing a critical security update according to Microsoft security bulletin, MS10-080. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Microsoft Excel, which fails to validate Excel document with crafted record information. Successfu ... oval:org.secpod.oval:def:211 The host is installed with Microsoft Excel and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which fails to parse an office art object record, when a stray reference to an element of a linked list is added. The linked list is hence navigated causing a meth ... oval:org.secpod.oval:def:210 The host is installed with Microsoft Excel and is prone to stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to verify the usage of an index of an array and copies the contents of the specified element into a statically sized buffer on the stack. Successful ... oval:org.mitre.oval:def:6761 Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Excel file, aka "Excel Record Stack Corruption Vulnerability." oval:org.mitre.oval:def:6521 Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows rem ... oval:org.secpod.oval:def:209 The host is installed with Microsoft Excel 2003 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to parse an office art object, when a malformed object is added to a linked list. The application explicitly trusts a function pointer of this object ... oval:org.mitre.oval:def:5837 Array index vulnerability in Microsoft Office Excel 2000 SP3 and 2002 SP3, and Office 2004 and 2008 for Mac allows remote attackers to execute arbitrary code via an Excel file with a crafted array index for a FORMAT record, aka the "Excel Index Array Vulnerability." oval:org.mitre.oval:def:5556 Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote at ... oval:org.mitre.oval:def:5830 Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; and Microsoft Office Excel Viewer 2003 SP3 allow remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "Reco ... oval:org.mitre.oval:def:6526 Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allow remo ... oval:org.mitre.oval:def:6768 Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed WOPT (0x80B) record, aka "Excel Record Memory Corruption Vulnerability," a different vulnerability than CVE-2010-0821 and CVE-2010 ... oval:org.secpod.oval:def:2994 The host is missing a critical security update according to Microsoft security bulletin, MS08-074. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Excel, which fails to properly handle specially crafted Excel file. Successful exploitatio ... oval:org.secpod.oval:def:2632 The host is missing an important security update according to Microsoft bulletin, MS08-043. The update is required to fix a remote code execution vulnerability. The flaws are present in the Excel parses record values, index values and array index when loading Excel files into memory and when data co ... oval:org.mitre.oval:def:6630 Unspecified vulnerability in Microsoft Office Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel file with a malformed RTD (0x813) record that triggers heap corruption, aka "Excel Memory Corruption Vulnerability," a different vulnerability than CVE-2010-0823 and CVE-2010-1 ... oval:org.mitre.oval:def:6872 Microsoft Excel 2002 SP3 and 2003 SP3, and Office 2004 for Mac, does not properly validate binary file-format information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Negative Future Function Vulnerability." oval:org.mitre.oval:def:6474 Microsoft Office Excel 2002 SP3 and 2003 SP3, and Office Excel Viewer 2003 SP3, does not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a spreadsheet with a malformed record object, aka "Excel SxView Memory Corruption Vulnerability." oval:org.mitre.oval:def:7209 Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Out Of Bounds Array Vulnerability." oval:org.mitre.oval:def:6518 Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allow remo ... oval:org.mitre.oval:def:6634 Buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed ExternName (0x23) record, aka "Excel Memory Corruption Vulnerability," a diffe ... oval:org.mitre.oval:def:6877 Unspecified vulnerability in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed SxView (0xB0) record, aka "Excel Record Memory Corruption Vulnerabil ... oval:org.secpod.oval:def:2285 The host is missing a critical security update according to Microsoft security bulletin, MS09-067. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Excel, which fails to handle malformed records. Successful exploitation allows an atta ... oval:org.mitre.oval:def:7042 Integer overflow in Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel document with crafted record information, aka "Excel Record Parsing Integer Overflow Vulnerability." oval:org.mitre.oval:def:6102 Integer overflow in the REPT function in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 SP3; Office Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office SharePoint Server 2007 Gold and SP ... oval:org.secpod.oval:def:822 The host is missing an Important security update according to Microsoft security bulletin, MS11-021. The update is required to fix multiple code execution vulnerabilities in Microsoft Office Software or Microsoft Office Suites and Components (Excel). The flaws are present in the application, whi ... oval:org.mitre.oval:def:6902 Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Ghost Record Type Parsing Vulnerability." oval:org.secpod.oval:def:707 The host is installed with Microsoft Office Excel 2002 or 2003 or 2007 or 2010 or Excel Viewer or Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and is prone to remote code execution vulnerability. A flaw is present in the application when Microsoft Excel does ... oval:org.secpod.oval:def:709 The host is installed with Microsoft Excel 2002 or 2003 or 2007 or 2010 or Excel Viewer 2007 or Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and is prone to arbitrary code execution vulnerability. A flaw is present in the applications which is caused when Mic ... oval:org.mitre.oval:def:5808 Array index vulnerability in Microsoft Office Excel 2000 SP3, 2002 SP3, and 2003 SP3; Excel Viewer 2003 Gold and SP3; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via an Excel spreadsheet with a NAME record that contains an ... oval:org.mitre.oval:def:6178 Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; and Microsoft Office Compatibility P ... oval:org.secpod.oval:def:713 The host is installed with Microsoft Excel 2002 and is prone to arbitrary code execution vulnerability. A flaw is present in the application which is caused when Microsoft Excel does not properly initialize a variable that is used as the length of a memcpy operation while parsing a specially crafted ... oval:org.mitre.oval:def:7028 Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Formula Biff Record Vulnerability." oval:org.secpod.oval:def:710 The host is installed with Microsoft Excel, 2002 and is prone to remote code execution vulnerability. A flaw is present the application which is caused when Microsoft Excel encounters a memory handling error during validation of record information while parsing a specially crafted Excel file. Succes ... oval:org.secpod.oval:def:712 The host is installed with Microsoft Excel 2002 or 2003 and is prone to arbitrary code execution vulnerability. A flaw is present in the applications which is caused when Microsoft Excel encounters a memory handling error during validation of record information while parsing a specially crafted Exce ... oval:org.mitre.oval:def:7265 Stack-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a crafted OBJ (0x5D) record, aka "Excel Object Stack Overflow Vulnerability." oval:org.secpod.oval:def:711 The host is installed with Microsoft Excel 2002 or 2003 and is prone to remote code execution vulnerability. A flaw is present in the applications which is caused when Microsoft Excel encounters a memory handling error during validation of record information while parsing a specially crafted Excel f ... oval:org.mitre.oval:def:6737 Microsoft Excel 2002 SP3 and 2003 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted .wk3 (aka Lotus 1-2-3 workbook) file, aka "Lotus 1-2-3 Workbook Parsing Vulnerability." oval:org.mitre.oval:def:5925 Integer overflow in Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; Microsoft Office ... oval:org.mitre.oval:def:6738 Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate binary file-format information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Out-of-Bounds Memory Write in Parsing Vulnerability." oval:org.mitre.oval:def:5885 Microsoft Office Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3; Office Excel Viewer 2003; and Office 2004 and 2008 for Mac do not properly validate index values for AxesSet records when loading Excel files, which allows remote attackers to execute arbitrary code via a crafted Excel file, aka the "E ... oval:org.secpod.oval:def:2293 The host is missing a critical security update according to Microsoft security bulletin, MS09-009. The update is required to fix remote code execution vulnerabilities in Microsoft Office Excel. The flaws are present in the Microsoft Office Excel, which fails handle a specially crafted Excel file. Su ... oval:org.mitre.oval:def:5750 Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 SP3; Office Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File For ... oval:org.mitre.oval:def:5114 Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted data validation records, aka "Excel Data Validation Record Vulnerability." oval:org.mitre.oval:def:6043 Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel in Microsoft Office 2004 and 2008 for Mac; Microsoft Office Excel Viewer and Excel Viewer 2003 SP3; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 do not properly parse the Excel s ... oval:org.mitre.oval:def:5878 Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 do not pro ... oval:org.mitre.oval:def:6727 Microsoft Excel 2002 SP3 and Office 2004 for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Merge Cell Record Pointer Vulnerability." oval:org.mitre.oval:def:5512 Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office for Mac 2004 allows user-assisted remote attackers to execute arbitrary code via malformed formulas, aka "Excel Formula Parsing Vulnerability." oval:org.mitre.oval:def:6842 Microsoft Office Excel 2002 SP3, 2007 SP1, and SP2; Office 2004 for mac; Office 2008 for Mac; Open XML File Format Converter for Mac; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; allows remote attackers to execute arbitrary code via an Excel file with ... oval:org.mitre.oval:def:5508 Unspecified vulnerability in Microsoft Excel 2000 SP3 and 2002 SP2, and Office 2004 and 2008 for Mac, allows user-assisted remote attackers to execute arbitrary code via crafted conditional formatting values, aka "Excel Conditional Formatting Vulnerability." oval:org.mitre.oval:def:6839 Stack-based buffer overflow in Microsoft Office Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel file with a malformed RTD (0x813) record, aka "Excel RTD Memory Corruption Vulnerability." oval:org.secpod.oval:def:2039 The host is missing a critical security update according to Microsoft security bulletin, MS10-057. The update is required to fix code execution vulnerability. A flaw is present in the Office Excel in Microsoft Windows, which fails to parse the Excel file format. Successful exploitation could allow a ... oval:org.mitre.oval:def:7369 Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Excel file, aka "Excel String Variable Vulnerability." oval:org.mitre.oval:def:12088 Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Excel file, aka " ... oval:org.mitre.oval:def:6273 Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "String Copy Stack-Based Overrun Vulnerability." oval:org.secpod.oval:def:2369 The host is missing a critical security update according to Microsoft security bulletin, MS09-021. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Excel, which fails to handle a specially crafted Excel file that includes a malformed ... oval:org.mitre.oval:def:7240 Unspecified vulnerability in Microsoft Office Excel 2002 SP3, 2003 SP3, 2007 SP1 and SP2; Office 2004 for mac; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; al ... oval:org.mitre.oval:def:6146 Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, Open XML File Format Converter for Mac, and Office Excel Viewer 2003 SP3 do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Excel Cache Memory ... oval:org.mitre.oval:def:5212 Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, Compatibility Pack, and Office 2004 and 2008 for Mac allows user-assisted remote attackers to execute arbitrary code via malformed tags in rich text, aka "Excel Rich Text Validation Vulnerability." oval:org.mitre.oval:def:6265 Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via a spreadsheet containing a malformed object that triggers memory corruption, related to "loading Excel records," aka "Excel Document Parsing ... oval:org.mitre.oval:def:5456 Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office for Mac 2004 allows user-assisted remote attackers to execute arbitrary code via crafted Style records that trigger memory corruption. oval:org.mitre.oval:def:7196 Microsoft Excel 2002 SP3 and 2007 SP2; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Real Time Data Array Re ... oval:org.mitre.oval:def:7223 Buffer overflow in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed HFPicture (0x866) record, aka "Excel HFPicture Memory Corruption Vulnerability." oval:org.mitre.oval:def:6137 Heap-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via a spreadsheet containing a malformed Binary File Format (aka BIFF) record that triggers memory corruption, aka ... oval:org.mitre.oval:def:5564 Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; and Microsoft Office Compatibility P ... oval:org.mitre.oval:def:5561 Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 Gold and SP3; Office Excel Viewer; Office Compatibility Pack 2007 Gold and SP1; Office SharePoint Server 2007 Gold and SP1; and Office 2004 and 2008 for Mac do not properly parse Country reco ... oval:org.mitre.oval:def:6771 Unspecified vulnerability in Microsoft Office Excel 2002 SP3, 2003 SP3, 2007 SP1 and SP2; Office 2004 for mac; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; al ... oval:org.mitre.oval:def:5968 Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1; and Excel in Microsoft Office 2004 and 2008 for Mac allow remote attackers to execute arbitrary code via a crafte ... oval:org.secpod.oval:def:1571 The host is missing a critical security update according to Microsoft security bulletin, MS10-038. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Microsoft Excel and Compatibility Pack, which fails to parse a specially crafted Excel files. Succ ... oval:org.mitre.oval:def:7593 Heap-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with malformed (1) EDG (0x88) and (2) Publisher (0x89) records, aka "Excel EDG Memor ... oval:org.secpod.oval:def:2583 The host is missing a critical security update according to Microsoft security bulletin, MS08-057. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application which fails to properly handle specially crafted Excel file. Successful exploitati ... oval:org.mitre.oval:def:5870 Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA Performance Cache when processing an Office document with an embedded object, which allows remote attackers to execute arbitrary code via an Excel file containing a crafted value, leading to heap-base ... oval:org.mitre.oval:def:8545 Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 do not properly parse the Excel file for ... oval:org.secpod.oval:def:2236 The host is missing a critical security update according to Microsoft security bulletin, MS10-017. The update is required to fix remote code execution vulnerabilities. Flaws are present in Microsoft Office Excel, which fails to parse a specially crafted Excel files. Successful exploitation could all ... oval:org.secpod.oval:def:2637 The host is missing an important security update according to Microsoft bulletin, MS08-014. The update is required to fix a remote code execution vulnerability. A flaw is present in the way excel processes data validation records when loading Excel files into memory. Successfully exploitation could ... oval:org.mitre.oval:def:5546 Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted macros, aka "Macro Validation Vulnerability," a different vulnerability than CVE-2007-3490. |
