Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Excel
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 323 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2006-06-21 | CVE-2006-3014 | Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users to arbitrary sites via an Excel spreadsheet with an embedded Shockwave Flash Player ActiveX Object, which is automatically executed when the user opens the spreadsheet. | Excel | N/A | ||
| 2006-07-13 | CVE-2006-2388 | Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process. | Excel, Excel_viewer | N/A | ||
| 2006-07-13 | CVE-2006-1309 | Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted LABEL record that triggers memory corruption. | Excel, Excel_viewer | N/A | ||
| 2006-07-13 | CVE-2006-1308 | Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted FNGROUPCOUNT value. | Excel, Excel_viewer | N/A | ||
| 2006-07-13 | CVE-2006-1306 | Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malformed OBJECT record Vulnerability." | Excel, Excel_viewer | N/A | ||
| 2006-07-13 | CVE-2006-1304 | Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted COLINFO record, which triggers the overflow during a "data filling operation." | Excel, Excel_viewer | N/A | ||
| 2006-07-13 | CVE-2006-1302 | Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with certain crafted fields in a SELECTION record, which triggers memory corruption, aka "Malformed SELECTION record Vulnerability." | Excel, Excel_viewer | N/A | ||
| 2006-07-13 | CVE-2006-1301 | Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted SELECTION record that triggers memory corruption, a different vulnerability than CVE-2006-1302. | Excel, Excel_viewer | N/A | ||
| 2006-03-14 | CVE-2006-0030 | Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via an Excel file with a malformed graphic, which leads to memory corruption. | Excel, Office | N/A | ||
| 2006-03-14 | CVE-2006-0029 | Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via an Excel file with a malformed description, which leads to memory corruption. | Excel, Office | N/A |