PT-2007-1526 · Microsoft · Office Excel

Published

2007-01-09

Updated

2018-10-16

CVE-2007-0030

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Excel versions 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac

Description A remote code execution issue exists in Microsoft Excel, allowing attackers to execute arbitrary code via an Excel file with a malformed Column record in certain BIFF8 record types. This can cause the program to reference arbitrary memory.

Recommendations For Microsoft Excel 2000 SP3, update to a newer version to mitigate the risk. For Microsoft Excel 2002 SP3, update to a newer version to mitigate the risk. For Microsoft Excel 2003 SP2, update to a newer version to mitigate the risk. For Microsoft Excel 2004 for Mac, update to a newer version to mitigate the risk. For Microsoft Excel v.X for Mac, update to a newer version to mitigate the risk.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0030

Affected Products

Office Excel

PT-2007-1526 · Microsoft · Office Excel

CVE-2007-0030

Related Identifiers

Affected Products

References · 16