CVE-2013-3890

Name of the Vulnerable Software and Affected Versions Microsoft Excel versions 2007 SP3 Excel Viewer (affected versions not specified) Office Compatibility Pack version SP3

Description A remote code execution issue exists in the way Microsoft Excel parses content in Excel files. This could allow an attacker to take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The impact may be less severe for users with limited user rights compared to those operating with administrative rights.

Recommendations For Microsoft Excel 2007 SP3, update to a version that is not affected by this issue. For Excel Viewer, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Office Compatibility Pack SP3, update to a version that is not affected by this issue.