Описание
Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process.
Ссылки
- Patch
- Vendor Advisory
- Vendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2000:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2000:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2000:sr1:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2002:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2002:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2002:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2003:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2003:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2004:*:mac_os_x:*:*:*:*:*
cpe:2.3:a:microsoft:excel:x:*:mac_os_x:*:*:*:*:*
cpe:2.3:a:microsoft:excel_viewer:2003:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.40206
Средний
9.3 Critical
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
почти 4 года назад
Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process.
EPSS
Процентиль: 97%
0.40206
Средний
9.3 Critical
CVSS2
Дефекты
CWE-94